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Delta, Boeing to Test 
RFID on Engine Parts 


Airline hopes to improve inventory tracking; 
aviation industr y seeks common standards 


BY BOB BREWIN 
Delta Air Lines Inc. and The 
Boeing Co. next month plan to 
start testing the use of radio 
frequency identification tags 
to track airplane engine parts | 
— atrial run that may herald | 
widespread RFID adoption by | 
airlines and suppliers of air- | 
craft components. 
The test at Delta dovetails | 
with plans by Chicago-based _ | 
Boeing and rival aircraft mak- | 
er Airbus SAS to jointly de- 
velop RFID standards for the | 
aviation industry. Boeing and 


Toulouse, France-based Air- 
bus will host the first of three 
Global Aviation RFID Forums 
in Atlanta this week to start 
the standardization process 
with airlines and suppliers. 
Similar meetings are planned 
in Hong Kong and Munich 
this summer. 

Kenneth Porad, program 
manager for Boeing’s automat- 
ed identification program, said 
his company and Airbus have 
decided to “speak with a sin- 
gle voice” on using RFID tech- 

RFID, page 61 





CA's Kumar Resigns; Some 
Users Welcome Departure 


He should ‘get out of 
the way, one user says 


BY MATT HAMBLEN 
The announcement 
on Friday of Sanjay 
Kumar’s departure 
from Computer As- 
sociates Internation- 
al Inc. disheartened 
some users who 
liked his focus on 
improved customer 
service. But it 


| pleased others who had been 
| concerned about his oversight 


of a company charged with ac- 
counting irregularities. 
“Frankly, when 
[Kumar] was ousted 
as CEO, I was sur- 
prised he was stay- 
ing on with the com- 
pany,” said Erica 
Harzewski, a Temec- 
ula, Calif.-based 
database admini- 
Kumar, page 16 
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Many of your counterparts in Canada think you're way overpaid. 
| Microsoft security execs Mike Nash and Scott Charney speak out. | 
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‘Open-Source’ Solaris Plan 
Draws Lukewarm Response 


Some analysts doubt Sun’s move to extend 
Java model toOSw ill appeal to corporate users 





“T’m totally nonplussed by 
| the announcement,” said Dale 
Pickford, chief infrastructure 

| officer at Ocwen Technology 


anim Xchange Inc., the tech- 
| 
i 


BY PATRICK THIBODEAU 
Sun Microsystems Inc.’s an- 
nouncement last week that it 
plans to make Solaris an 

“open-source” operat- 
ing system was met 
with mixed reactions 
from users and skepti- 
cism from open-source 
advocates. 


nology subsidiary of fi- 
nancial services com- 
pany Ocwen Financial 
Corp. in West Palm 
Beach, Fla. 


Ocwen last year consolidat- 
ed around 140 servers into 
several high-end Sun servers 
running Solaris — one with 
more than 100 processors. For 
smaller servers with four or 
fewer CPUs, Linux on Intel is 
suitable, Pickford said. But for 
systems larger than that, “the 
Sparc [processor] and Solaris 
environment really comes 
into its own,” “And 
once you start playing at that 
level anyway, you don’t want 
to be messing with the OS.” 

Terry Verity, CIO at Seneca 
College in Toronto, runs 66 

Solaris, page 16 


he said. 





() SERIES 








COMPANIES THAT PUT VOICE ON THE 
NETWORK CHOOSE THE COMPANY 
THAT BUILT THE NETWORK. 


When voice joins data on a secure network, some remarkable things can happen. Instead of managing different flavors of PBX from location to 


handle everything from one place, saving time and money—not to mention mileage on IT staff shoes. And with over 20 years 
Cisco has become the standard for millions of voice IP users around the world. It's why over half of the Global 500 have chosen Cisco to rethin 
handle voice. And their business. Are you in yet? To learn how Cisco can help you plan, design and implement an end-to-end IP s¢ 


NOW, OVER THREE MILLION PEOPLE ARE USING CISCO IP PHONES. 


Cisco SYSTEMS 


THIS IS THE POWER OF THE NETWORK. NOW. 





When it comes to data backup and recovery, you want a reliable, high-performance solution you 
can count on. That's why we've created BrightStor ARCserve Backup Release 11, featuring the 
very latest in storage innovations. BrightStor ARCserve Backup is faster and easier than ever, 
enhancing both efficiency and productivity. And with CA’s superior technology, you can be 
confident your files are properly backed up and will easily be restored should a disaster occur. 


For more information, go to 
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Bridging the Financial Skills Gap 
In the Management section: Despite the 
recent focus on cost-cutting, many IT 


NTENTS 


FIELD REPORT 


Refurnishing the Supply Chain 

In the Technology section: A $14 million 
warehouse and transportation system over- 
haul at office furniture maker Haworth Inc. 
cut costs significantly, paying back the ini- 
tial investment in just nine months. Page 39 


staffs still lack the financial skills needed 
to track project payback. But some com- 
panies are changing that situation. Page 45 


U.S. IT workers are over- 
paid, say Canadian IT exec- 
utives. 


Some SQL Server users say 
the elimination of fees for 
fail-over databases could 
give Microsoft an edge over 
Oracle. 


California’s identity theft law 
hasn’t generated the expected 
onslaught of lawsuits. 


Microsoft exec Mike 
Nash discusses Windows XP 
Service Pack 2 and outlines 
the vendor’s security strategy. 


12 EMC packages its Centera 


arrays with e-mail and docu- 
ment-archiving software to 
ease regulatory compliance. 


Microsoft tightens links 
between its CRM and Office 
2003 applications. 


Offshore development puts 
software vendors on the hot 
seat at a congressional hear- 
ing on security. 


Sun offers a subscription- 
based pricing plan for its 
high-end disk arrays. 


19 Start-up ITM Software final- 


izes a suite of IT management 
tools that has been likened to 
an ERP system for CIOs. 


2 Sony drops plans to intro- 
duce new models of its Clie 
handhelds outside of Japan. 


Citigroup is installing a video 
streaming system for 300,000 
desktop PCs. 


COMPUTERWORLD 
HONORS 2004 


This year’s select HONORS 
FINALISTS found new ways 
to cut waste, advance their 
industries and, in some cases, 
save lives. 


29 The Depository Trust & 
Clearing Corp. A multihop 
remote data-replication 
scheme allows DTCC 
to push the edge of its 
disaster recovery effort. 


32 Exostar LLC. 
Five of the largest 
aerospace and 
defense firms use 
Exostar’s Forum- 
Pass 2.0 to store 
and share sen- 
sitive data. 
Exostar’s Jeff Nigriny 
explains how they do it. 


Big th hae 


33 Michigan DOT. A re- 
designed traffic-accident 
database could save lives, 
improve highway design 
and cut costs. 


36 SAT Corp. A handheld 
device helps refineries 
move from paper-based 
systems to computerized 
workflow management. 
Workers use it to catch 
small problems before 
they become big ones. 


37 Robertson Research 
Institute. The NxOpinion 
project aims to help physi- 
cians in underserved 
communities make rapid 
and accurate diagnoses 
using a massive, inter- 
active knowledge base. 


OPINIONS 


8 On the Mark: Mark Hall says 
you should forget server mon- 
itoring and watch your appli- 
cations instead. 


6 Maryfran Johnson finds that 
readers do care about the sep- 
aration of editorial content 
and advertising. 


5 Pimm Fox knows this about 
people: Their love of conve- 
nience will trump their priva- 
cy concerns about increased 
security screenings. 


27 Dan Gillmor sees another im- 
portant message in the pic- 
tures from Abu Ghraib: We’re 
no longer able to keep things 
covered up. 


44 Paul A. Strassmann says the 
Defense Department has be- 
come a pioneer in IT systems 
architecture. 


52 Paul Glen wonders how you 
know when an IT project has 
gotten to “done.” 


62 Frankly Speaking: Frank 
Hayes sounds the death knell 
for big IT projects. He says 
system overhauls and other 
initiatives that once required 
giant leaps can now be ac- 
complished with a series of 
small steps. 
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ANew Chapter in Malware 
SECURITY: The Witty worm represented 
some scary malware firsts and is likely a har- 
binger of threats to come. IT professionals 
need to understand Witty and what it did, 
writes Counterpane CTO Bruce Schneier. 


© QuickLink 47272 


Why Is This Project So Expensive? 
DEVELOPMENT: A coder on the front lines 
wonders why we don’t design software with 


the future in mind. @ QuickLink 47071 


Letter of the Law: 
E-Document Retention Policies 


'T MANAGEMENT: There are no one-size-fits- 
all policies, but Steven C. Bennett of law firm 
Jones Day offers advice on how to craft the 
best document-retention policy for your 


company. @ QuickLink 47147 


How to Justify Security Training 
SECURITY: Training can provide a lot of orga- 
nizational and personal payoffs if you know 
how to sell the idea to management. One of 
these ideas might get you signed up for that 
class or conference you want to attend. 


@ QuickLink 47097 


Wanted:Managed _ 

Storage Service Supplier 

STORAGE: To keep its staff focused on core 
competencies, a global law firm turns to Sun 
Microsystems to manage its 20TB SAN. 

© QuickLink 47114 


ONLINE 

What's a QuickLink? DEPARTMENTS 

Throughout each issue of 

Computerworld, you'll 
see five-digit QuickLink codes 
pointing to related content on 
our Web site. Also, at the end of 
each story, a QuickL ink to that 
story online facilitates sharing it 
with colleagues. Just enter any 
of those codes into the Quick- 
Link box, which is at the top of 
every page on our site. 


Breaking News 
© QuickLink a1510 


© QuickLink 21430 


Knowledge Centers 
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The Online Store 
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Symbol Pays $40M 
To Settle Probes 


Symbol Technologies Inc. said it 
will pay a total of $40 million to 
settle accounting investigations 
by the U.S. attorney in New York 
and the U.S. Securities and Ex- 
change Commission. Holtsville, 
N.Y.-based Symbol said the set- 
tlements will let it avoid criminal 
charges, although the SEC did file 
a civil action charging the compa- 
ny with securities fraud and other 
violations. Similar charges were 
lodged against 11 former Symbol 
executives. 

Symbol also has agreed to set- 
tle two shareholder class-action 
suits by paying $1.75 million in 
cash plus stock valued at a total 
of $96.25 million. It still faces 
two other shareholder suits over 
accounting irregularities dating 
back to 1998. But CEO William 
Nuti said Symbol’s new manage- 
ment team has “succeeded in 
putting the vast majority of our 
problems behind us.” 


IT Glitch Delays - 
Bank’s Processing 


Royal Bank of Canada disclosed 
that a computer glitch was delay- 
ing its processing of deposits, 
withdrawals and payments, leav- 
ing the bank unable to provide up- 
to-date account balances. The 
Toronto-based bank said the prob- 
lems began “during a routine pro- 
gramming update” to one of its 
systems. The glitch forced bank 


workers to recheck and verify tens 
| layson, national manager for 


of millions of transactions daily. 


Intel Increases Q2 
Revenue Forecast 
Intel Corp. raised its second- 
quarter revenue forecast to the 
high end of the range it previously 
had predicted, citing strong flash- 
memory demand. Intel now ex- 
pects revenue of $8 billion to 
$8.2 billion. Chief Financial Offi- 
cer Andy Bryant said sales of PC 
processors are running 19% high- 
er than they were in last year’s 
second quarter, which is in line 
with Intel’s expectations. 


Suggest high wages fuel offshore moves; 
Canada benefits as a nearshore provider 


BY PATRICK THIBODEAU 


KANANASK ALBERTA 


SK A GROUP OF 

Canadian CIOs if 
they think U.S. IT 
workers are over- 


| paid. After the laughter dies 
| down, there will be a lot of 


affirmative head-nodding. 
“They are grossly overpaid, 


| certainly relative to Canadian 
| scales,” said Allen Borak, vice 


president of information sys- 
tems at Canadian Pacific Rail- 
way Ltd. in Calgary, Alberta. 
“It’s quite astounding.” 

Borak, who’s completing an 
IT compensation study com- 


paring wage rates, said IT 
| manager salaries in the U.S. 
| are as much as 25% higher 


than those for similar posi- 
tions in Canada after being 


| adjusted for the currency ex- 


change rate. “I was surprised 
by the difference,” he said. 
Some Canadian CIOs sug- 


| gest that a key reason U.S. 
| workers are facing a larger off- | 


shore threat than their north- 


their high pay. They see evi- 
dence of such high wages 
when U.S. providers bid on 
consulting services with 
hourly rates of $200. 

“The American market is 
overheated,” said Michael Fin- 


| yet to affect Canadian IT sala- 
| ries, she expects that it will. 


Talisman outsources 90% of 


| its IT labor but owns the as- 
| sets, which outsourcers man- 





| ern counterparts is because of | 


information services at Toyota | 


Canada Inc. in Scarborough, 
Ontario. And IT is “adding 
high costs into an organization 
as a whole,” he said. 


Looking Offshore 


But Canadian IT executives 
aren’t ignoring the offshore 
option, which their U.S. peers 
use to reduce labor costs. 
Alex Federucci, senior man- 
ager of information systems 
and services at Talisman Ener- 


gy Inc., an oil and gas company | 


in Calgary, said that although 


| offshore pricing pressure has 


| age in-house. Federucci said | 
she’s interested in taking some | 
| low-risk IT services work off- 
| shore. “I think the price is go- 
| ing to go down on the com- 

| modity business,” she said. 


But because of its lower IT 
wages and an exchange rate 
that puts the Canadian dollar 


| at about 25% below the U.S. 

| dollar, Canada is an attractive 
| nearshore outsourcing desti- 
| nation for U.S. companies. 


RIS Resource Information 
Systems Inc., an application 


development and maintenance | 


| Canadian IT Execs Say 
US. Peers Are Overpaid 


4 [U.S. IT work- 
ers] are gross- 

ly overpaid, certain- 

ly relative to Cana- 


| dian scales. It’s 





ALLEN BORAK, VICE PRESIDENT OF 
IS, CANADIAN PACIFIC RAILWAY 


| outsourcer that sponsored a 


CIO conference here last 


| week, is seeing steady growth 


in nearshore work from the 
U.S.: Two years ago, it account- 


| ed for none of its business; 
now it makes up 15%. The Cal- | 


gary-based company estimates 


| that Canadian IT salaries are 


about 30% below those of 
U.S. IT workers, before the 
exchange rate is considered. 





www.computerworld.com 


But even RIS is going 
offshore to lower costs, having 


opened a facility last year in 


Romania. Workers there are 
paid about half as much as 


| their Canadian counterparts. 


Indeed, Borak, who uses 


| RIS for some application de- 


velopment work, wants the 


| company to shift more work to 


Eastern Europe to give him a 
“blended rate” that could low- 
er his development costs by as 


| much as 20%. 


Some Canadian IT man- 


| agers said many IT positions, 
| especially those that demand 


ERP skills, could see a wage 
increase. “Truly qualified peo- 
ple are difficult to find,” said 
Janet Topic, vice president of 
IT at Trimac Corp., a Calgary- 
based transportation company. 
U.S. companies are also in 
need of people who have ERP 
experience, and some firms 
look north for them, Topic not- 
ed. “They actually recruit out 
of Canada,” she said, adding 
that some Canadian workers 
go to the U.S. for those jobs 
and the higher pay. @ 47346 


One Canadian’s View From Above 


Peter Thompson founded RIS 
Resource Information Systems 
in 1979 as an application sup- 
port and maintenance company. 
RIS now employs about 400 
workers and does about 15% of 
its business as a nearshore out- 
sourcing provider for U.S. com- 
panies. In an interview last 
week, Thompson, president and 
CEO of RIS, assessed the effect 
of offshore and nearshore work 
on U.S. IT wages. 


How can nearshore providers 
compete against offshore op- 
erations in India with their 
lower prices? In application 
support and maintenance. The 
issue for the Indian companies 
is that the problems are occur- 
ring when they are asleep. Com- 
panies want instantaneous infor- 
mation. Application support and 
maintenance doesn’t work off- 
shore. We use a Romanian firm 
as our offshore option. But 

we funnel things there, like con- 
versions and enhancements, 


where you spec it and send it. 


You've expressed the view 
that worldwide, there should 
be equal pay for equal work. 
Can you elaborate on that? 
This is my view long term. | think 
the Internet is the great equaliz- 
er, and there will come a point, 
whether you are living in India, 
Romania or China and are doing 
IT work, that you will get paid the 
same, more or less. There are 
geographic differences. You will 


Re Lah gt 
Pr RO ete om TBR) Le 
says PETER THOMPSON, 
president and CEO of RIS. 


get paid more in New York City 
than in Buffalo, but the huge dif- 
ferences will disappear. 


So, what’s your message to 
the U.S. IT worker? | wouldn't 
worry. | think the value of the 
U.S. worker will always be busi- 
ness-related. The U.S. IT worker 
will be designing the applica- 
tions for the business, testing 
them, putting them in. They'll 
probably be maintained some- 
where else. 


In terms of the so-called 
commodity skills - infra- 
structure maintenance and 
application development 
and support - do you expect 
salaries in the U.S. to fall to 
match global rates? No. What 
| think will happen is the Indian 
rates will rise. Their wages 
will come up. We're already see- 
ing that. They are having high 
turnover. | don’t think [North 
American} wages will go down. 
- Patrick Thibodeau 





One Year Later, California Identity 
Theft Law Remains Low-key 


The regulation hasn’t spurred predicted 
lawsuits but has increased awareness 


BY JAIKUMAR VIJAYAN 

Nearly a year after California’s 
landmark SB 1386 identity 
theft law went into effect, 
there has been none of the 
troublesome litigation that 
had been predicted to come 

in its wake. 

But the law has raised over- 
all corporate awareness of the 
need to have strong privacy 
protections in place, legal ex 
perts said last week. 

SB 1386, which went into ef- 
fect July 1 last year, requires 
companies that do business 
with California residents to in- 
form customers when their 
names, in combination with 
personally identifiable infor- 
mation, have been accessed 
by an unauthorized person 
[QuickLink 39515]. Some legal 
experts had expected the law 
to open a floodgate of trouble, 
especially because of the am- 
biguous nature of some of 
its provisions. 

For instance, the law calls 
for companies to encrypt data 
but doesn’t specify what level 
of encryption is considered 
legally acceptable. Similarly, 
the law isn’t specific about the 
obligations of the IT organiza- 
tion, mandating only that 
companies notify customers 
when “it is reasonably be- 
lieved” that personal informa- 
tion has been compromised. 


Educational Impact 
To date, there have been no 
publicly disclosed cases in 
which the provisions of the 
law have been tested in court. 

“It appears that it didn’t 
have quite the impact that was 
expected,” said Arshad Noor, 
CEO of StrongAuth Inc., an 
identity and compliance man- 
agement company in Cuperti- 
no, Calif. “There have been no 
lawsuits and no court cases 
[so far].” 

But it would be a mistake to 
take that to mean the law has 


not been effective, said Don 
ald Harris, president of HR 
Privacy Solutions Ltd., a New 
York-based identity manage- 
ment consultancy. “Compa- 
nies are trying to do whatever 
they can to avoid any kind of 
litigation or enforcement” un- 
der SB 1386, said Harris, who 
conducts corporate work- 
shops on the issue. 

“The very fact that the legal 
risk posed by the law has 
caused companies to enact 


protective and responsive 
measures” demonstrates its 
value, echoed Erin Kenneally, 
forensic analyst at the Univer- 
sity of California, San Diego. 

“Many organizations, if they 
have a good and well-funded 
staff of security professionals, 
are adding SB 1386 to whatev- 
er other compliance require- 
ments they have in effect,” 
said Stephen Wu, president of 
InfoSec Law Group PC in 
Mountain View, Calif. 

The IT department at Lath 
um & Watkins LLP, a Los An- 
geles-based law firm, is one 
example. “We’ve conducted 


SB 1386 awareness 
training, reviewed 
our systems and 
databases that 
could be subject to 
the law and have 
determined how we 
would respond in 
the event of a 
breach,” said Eric 
Goldreich, the 
firm’s manager of 
technology. 
And though no suits 
have been filed under the law 
it has gotten companies to 
proactively notify customers 
of security breaches involving 
personal information, said 
Christopher Pierson, an attor- 
ney at Phoenix-based Lewis 
and Roca LLP. “There are 
some companies that are still 


waiting for case law to be 


Microsoft Puts SQL Server in Line 
With Rivals on Backup Databases 


BY MARC L. SONGINI 

Microsoft Corp. last week be- 
gan letting SQL Server users 
who have Software Assurance 
contracts set up fail-over data- 
bases at no extra cost, a new 
policy that some customers 
said could give Microsoft an 
edge over Oracle Corp. 

Microsoft last month an- 
nounced that it would no 
longer charge Software Assur- 
ance customers for backup 
database servers, provided 
that the systems remain off 
unless the main database 
crashes or is corrupted and 
that they aren’t used for pro- 
cessing on a regular basis. 

Previously, users had to pay 
a variable fee to install a back- 
up SQL Server database for 
disaster recovery purposes, 
said Sunny Charlebois, a prod- 
uct manager in Microsoft’s 
worldwide licensing and pric- 
ing group. 

“Our customers have told us 
that disaster recovery is an 
issue that matters to them,” 
said Charlebois, who wouldn't 
disclose the earlier fees. She 
added that Microsoft’s licens- 
ing policy now is “consistent 
with the competition.” 


Both Oracle and IBM, Mi- 
crosoft’s main database rivals, 
said they don’t charge users 
extra for so-called cold-back- 
up servers. However, Oracle 
limits the use of fail-over data- 
bases to 10 days per year, after 
which users have to buy a full 


license. 


Weighing the Options 
Tessco Technologies Inc., a 
Hunt Valley, Md.-based ven- 
dor of wireless products, uses 
both Oracle and SQL Server. 
But Hal Kuff, Tessco’s systems 
and network manager, said he 
will consider directing future 
purchases toward SQL Server 


because of the new fail-over 
policy. 

For example, Tessco’s IT 
staff is re-examining a plan to 
run a new supply chain appli- 
cation on an Oracle database 

“The Oracle test and disas- 
ter-recovery license model ap- 
pears to be significantly more 
rigid,” Kuff said. “We’re won- 
dering why Oracle is not tak- 
ing a superior position in pric- 
by going with SQL Server, Kuff 
said, although he declined to 


ing.” Tessco could save money 


estimate how much. 

Jim Prevo, CIO at Green 
Mountain Coffee Roasters 
Inc. in Waterbury, Vt., said the 


SR TE IIT ARI EE SESE 
Database Licensing Policies 


Users who have Software Assurance con- 


tracts can store copies of their databases on 
cold-backup servers that must be turned off until needed. 


The new policy places no time limits on the use of secondary 


databases when they’re needed. 
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Cn 


= Users can cluster together two database 
servers and bring the backup one online if the 


primary database fails or becomes corrupted. 


=A full license has to be bought for the secondary database if 
it’s used for more than 10 days during a calendar year. 
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California's SB 1386 privacy law 
established” to fully in 
ment SB 1386 requiremen 
Pierson said. “My advice is to 
err on the side of caution and 


not be the first test case for 


1386.” @ 47344 


new approach on SQL Server 
might entice him to sign up 
for the Software Assurance 
program. Green Mo 
runs both SQL Server 
icle databases but is consoli 
dating on Microsoft’s technol- 
ogy. The licensing ch 
‘validates our decision to roll 
out all new platforms on SQI 
Server,” Prevo said 

Ultimately, both vendors 
handle the configuration of 
cold-backup servers in much 
the same way, said Charles 
Garry, a Meta Group Inc. ana- 
lyst. But he added that Micro- 
soft’s new policy seems to be 
more lenient than Oracle’s. 

Jacqueline Woods, vice 
president of global pricing and 
licensing strategy at Oracle, 
said Microsoft’s move merely 
brings its fail-over policy for 
SQL Server in line with Ora- 
cle’s. Woods said it’s unlikely 
that an Oracle database would 
crash unless a major disaster 
brought it down, and she 
added that it shouldn’t take 
more than 10 days to bring a 
primary database back up. 

In addition, if a primary 
database server remains down 
and its backup is kept running 
as a replacement, a company 
wouldn't have to pay for an- 
other Oracle license because 
it would already be covered by 
the existing one, Woods said. 


@ 47324 
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Sears Finalizes IT 
Pact with CSC 


Sears, Roebuck and Co. said it has 
finalized a 10-year, $1.6 billion IT 
infrastructure support services 
outsourcing deal with Computer 
Sciences Corp. The contract’s val- 
ue is $400 million less than Sears 
predicted when the retailer dis- 
closed that it was negotiating with 
CSC [QuickLink 45543]. Sears 
said CSC will hire “substantially 
all” of the 260 IT staffers who 
manage its systems now, with the 
transfers due to start on June 12. 


Oil Company, IBM 


ink Outsourcing Deal | 


IBM announced that its Business 
Consulting Services unit has 
signed a seven-year deal to take 
over the management of some ac- 
counting functions at Marathon 
Oil Co., as well as the systems 
that support the operations. The 
value of the contract wasn’t dis- 
closed. An official at Houston- 
based Marathon said the deal will 
include the addition of new tech- 
nology “beyond that which Mara- 
thon could provide alone.” 


LE OEE LENS AIPA ER 


Trial Starts in DOJ’s 
Suit Against Oracle 


The antitrust lawsuit that the U.S. 
Department of Justice filed in an 
attempt to block a takeover of 
PeopleSoft Inc. by Oracle Corp. 

is scheduled to go to trial today 
at U.S. District Court in San Fran- 
cisco. Oracle last week claimed 


that the DOJ’s case is built around | 


“the most confusing, meaningless 
market definition ever pursued in 
a government merger challenge.” 
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Network Associates 
Gets E-mail Patent 


Network Associates Inc. said it 
has been granted a U.S. patent on 
various techniques used to filter 
unwanted e-mail. The Santa 
Clara, Calif.-based company joins 
a list of vendors that hold anti- 
spam patents with potentially 
broad implications. 
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Don’t Monitor Servers, 
Look at Your .. . 


. . business operations instead. That’s the conclusion 
of Gordon Arbesman, network administrator at 
The Worker Benefit Plans of the Lutheran Church- 


Missouri Synod in St. Louis. Arbesman used a 3.0 beta | 


release of the eQ Management Suite from Heroix 


Corp. to watch the condition 
of a critical business applica- 
tion for 50,000 church mem- 
bers participating in a vari- 
ety of benefits programs. 
And he’s upgraded nearly 30 


servers, with the final release 


due out today. Arbesman 
says that if you just watch 
the condition of individual 
servers, you may miss some- 
thing important. For exam- 
ple, an ailing process that 
runs overnight on a separate 
server is unlikely to be no- 
ticed unless it’s logically tied 
to the overall health of the 
application, which is exactly 


what eQ 3.0 does. He says the 


improved graphical presen- 
tation of the monitoring soft- 
ware gives him and line-of- 
business managers a quick 
view of the health of vital 
operations. Rick Lane, 
president of Newton, 
Mass.-based Heroix, says 
the upgrade also adds 
expanded trend report- 

ing to help predict 

server performance 

and determine how 
effectively your 
multiprocessor 

servers are running. 
Arbesman hopes 





Heroix will soon add dash- 
board capabilities to eQ be- 
cause his CIO keeps bugging 


| him for a quick “speedom- 
| eter view” of overall opera- 
| tions. Good idea. Heaven 


help us if CIOs start playing 


| with the monitoring tools 


themselves. 


| Wi-Fi is wonderful 
| until you discover . . . 


.. that strangers can get net- 
work access while whiny execu- 
tives can’t. That’s when you 
might consider evaluating 


| WiFi Workplace, wireless 

| network management soft- 
| ware from Newbury Net- 

| works Inc. in Boston. The 


technical trick, according to 
CEO Michael Maggio, “is to 
be able to look at the air” like 


traditional network manage- 


ment tools can look at a wire. 


| But it ain’t easy. Wi-Fi’s radio 
frequency signals travel hith- 


er and yon, 
WiFi Workplace bouncing 
through 3-D 
space with 
what can be 
generously 
described 
as impreci- 
sion. New- 


ree 
de 
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bury’s sensors feed data to 


| the server-based WiFi Work- 


place management software, 
which builds graphical maps 


| of the strength of signals. 
| With that information, net- 
| work managers can set poli- 


cies about who can use Wi-Fi 


access points in physical loca- | 
| tions, whether outside on a 
| lawn or inside a conference 
| room. Maggio dubs it “air 


traffic control for Wi-Fi.” 


| WiFi Workplace can also be 


used to optimize access point 
coverage, since you can actu- 
ally see how effective signals 
are. Shipments are set to be- 
gin in September, with pric- 
ing starting at $18,995. 


“Actionable intelligence” 
gets a boost... 

.. this month 
with a deal be- 
tween Somer- 
ville, Mass.- 
based Spotfire 
Inc. and In- 
Q‘Tel, the ven- 
ture capital 
arm of the 
CIA. Accord- 
ing to Spot- 
fire President 
Rock Gna- 
tovich, In- 
Q-Tel is mak- 


eV Cey ites 
says Decision- 
Site will help 
intelligence 
analysts find 
meaning in 
OER mtr m 


| ing a small equity investment 


in his company, licensing its 
DecisionSite guided analytics 
software and assisting in the 
development of text-mining 


| tools for agencies involved in 


national security. With Deci- 
sionSite analytics, intelli- 
gence analysts can quickly 


| visualize mounds of struc- 

| tured and unstructured data 

| into meaningful scenarios, 

| sharing them with other ana- 
| lysts via browser-based Deci- 


sionSite Posters. Gnatovich 
says the ability to visualize 
the vast amounts of data 
available to the intelligence 
community lets “the brain 


| make a comeback.” That 


means analysts will be able to 
more quickly choose a course 





www.computerworld.com 


TRENDS, NEW ne 
NEWS AND INDUSTRY GOSSIP E£ 


MARK 


| of action. Watch out, Osama. 
| We’re coming. 


| Trust, but verify 


your incoming... 
. . e-mail with today’s 4.1 


| upgrade to CipherTrust Inc.’s 


lronMail appliance. Trusted- 
Source is part of the new re- 
lease. It’s a dynamically up- 
dated list of e-mail sources 


| that exhibit good e-mail 


behavior, such as protocol 
compliance, where the IP ad- 
dress matches the domain 

of the mail sender. It also 


| lists mailing sites that abide 


by end-user unsubscribe re- 


| quests. In addition, the up- 


grade adds more graphical 
reports and increases quaran- 
tine space for suspect mail. 


Tighten Web 
services security. . . 

.. with the XS 40 gateway from 
DataPower Technology Inc. in 
Cambridge, Mass. The device 
secures XML and Web ser- 
vices components to an ap- 
plication by ensuring the 
integrity of a code’s source 
as well as its function. The 
3.0 software release adds 
support for application build 
policies developed in the 
open-source Eclipse develop- 
ment framework as well as 
IBM WebSphere Studio. It 
bolsters its authentication 
service through access con- 
trols that can determine what 
each user is permitted to do 
within an application. It also 


| improves the performance 


and reliability of applications 
that use a mix of Web ser- 
vices and MQSeries compo- 
nents. The appliance inte- 
grates with traditional net- 


DataPower’s XS 40 gateway 


work frameworks such as 
Computer Associates’ Uni- 
center and IBM’s Tivoli. Pric- 
ing starts at $65,000, and it’s 
available now. @ 47325 
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Microsoft Security Exec Details 
Windows XP Service Pack Plans 


The release, due this summer, places 
strong emphasis on firewall capability 





BY CAROL SLIWA 
ICROSOFT CORP.'S 
latest security ef- 
forts are focused 
on Service Pack 2 

for Windows XP, which is due 

this summer. Mike Nash, 

vice president of 

Microsoft’s security 

business and technolo- 

gy unit, recently dis- 

cussed SP2 and the 

company’s security 

strategy with Comput- 

erworld. Excerpts from 

the interview follow: 


What guidance can you give IT 
pros about Windows XP Service 
Pack 2 breaking applications? 
Making sure that we’re doing 
things to make XP SP2 com- 
patible with key customer sce- 
narios is a top priority for us. 
One of the things with the new 
firewall in Service Pack 2 is to 
make sure that it’s compatible 
with more scenarios so that it 
can be turned on by default 
and left on by the customers. 
There may be some cases 
from a security perspective 
where we're doing things that 
change the behavior of the op- 
erating system. ... There may 
be certain cases where securi- 
ty and compatibility are at 
odds, and we’re going to focus 
on security, because people 
really need us to be focusing 
on security. ... The most im- 
portant thing customers 
should be doing right now is 
planning for their rollouts of 
Windows XP Service Pack 2, 
which means testing it today 
so that if there are issues, we 
get that feedback now so we 
have a chance to respond to it 
before we ship the product. 


How important is the firewall in 
Windows XP SP2 for companies 
that already have network fire- 
walls? When your machine is 
always inside the network, the 


GA 


primary thing that the fire- 


| wall’s going to do is protect 


your machine from another 


| infected machine that was 
| brought inside the network. If 
| you have a laptop that comes 


in with an infection, 
the edge [network fire- 
wall] can’t help you. 
But your machine will 
be protected from that 
attack. So I never turn 
my firewall off. 

The other thing that 
will happen, if a ma- 
chine comes in with 
malicious code on it, 
its ability to propagate can be 
somewhat slowed down by 
having a firewall there. The 
primary place it makes a dif- 
ference is for machines that 
are checking in remotely. We 
know a number of situations 
where an end user VPNs into 
the corporation and didn’t 


have a firewall turned on. That | 
| machine is not on the corpo- 


machine is both out on the In- 
ternet but inside the [corpo- 


| rate firewall] all at the same 
| time. Think of it as redefining 
| “edge of the network.” 


| Will XP SP2’s firewall work with 
| other personal firewalls? It is 


designed to support multiple 
firewalls, ours and a third par- 


| ty’s, at the same time. Practi- 

| cally speaking, if you’re using 

| a third-party firewall and 

| you're comfortable with its 

| level of protection, that’s a 

| fine answer. Our primary goal 
is to make sure that customers | 

| have a choice. 


I think one of the key bene- 


fits of our firewall is that it 
| canbe managed using group | 
policy. ... In Windows XP Ser- 


vice Pack 2, we’ve done work 
to make the firewall manage- 


| able using group policy with 

| Active Directory but also al- 

| low it to support multiple pro- 
| files. So I can set my policy to 


a rule that says, “When the 


| machine is inside the corpo- 
| rate network, allow it to do 
| more things even though the 


firewall is still on. When that 


rate network, and it’s sitting in 


a coffee shop or in a hotel 
room or in someone’s home, 
increase the level of protec- 
tion because I don’t have the 
corporate edge protected for 
that machine.” That’s some- 
thing that an administrator 
could do by policy based on 
what’s appropriate for their 
organization. 


Someone at a large Microsoft 


| customer that makes weapons 


systems for the government told 
me he believes that perfect soft- 


| ware can be written. Is there any 
| chance you'll rewrite Windows to 
| take advantage of what you’ve 


learned about security? I’m not 
a person who believes that 
perfect software is possible at 
that kind of scale, because 
there’s always going to be 
some level of vulnerability. 
Pragmatically, certainly we do 
everything we can to make 
sure that we’re training our 
engineers on how to build and 
design secure code, making 
sure that we're testing our 
software and making the soft- 
ware configuration as secure 
as possible. But there are go- 


Microsoft Sees Need to Escalate Efforts in Security War 


BOSTON 

A Microsoft security executive 
said last week that the threat of 
potentially more destructive 
viruses makes it difficult to gauge 
whether the company is winning 
the war to protect its products 
from malicious attacks. 

“It's hard to tell because we 
haven't seen some things yet that 
may reshape the dynamics,” 
Scott Charney, Microsoft's chief 
security strategist, said during an 
interview with Computerworld at 
a company security summit here. 
“We haven't seen polymorphic 
viruses very much that change 
their signatures on the fly. The 
existing set of tools doesn't 
work with that. That's not just an 
issue for us, but [for] the antivirus 


vendors” as well, he said. 
Charney said the potential for 
more destructive viruses that 
could format or encrypt drives on 
the fly has made him a proponent 
of backing up data. “Hard drives 
became so reliable that people 
stopped backing up,” he said. 
“And the industry 
stopped telling people 
to back up. Now I’m a 
huge proponent of it. 
\'m telling people to 
back up again, be- 
cause we know that 
virus is coming.” 
Charney said Mi- 
crosoft products are 
becoming more se- 
cure and easier to 
manage, and cus- 


- 


ae ec 

is making a differ- 

ence, but “we need 
PO tute me 


tomer feedback has shown that 
the company is starting to make a 
difference. “But we need to stay 
the course,” he added. “We need 
to do more.” 

Microsoft has been reviewing 
and refining the Trustworthy Com- 
puting initiative it launched over 

two years ago, adding 
requirements for an- 
nual training to help 
software engineers 
keep up with changing 
threat models, accord- 
ing to Charney. 
He said the compa- 
ye nyhas also been test- 
ing a survey tool to 
more objectively mea- 
sure how its software 
engineers are applying 
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| ing to be vulnerabilities in 
| software, and therefore the ap- 


proach is to make sure that we 
create essentially countermea- 


| sures to make sure that even if 


there is a vulnerability, we can 


| isolate the system software or 
| the application from the mali- 


cious software that might try 


| to attack it and drive more re- 
| siliency of how that software 
| behaves under attack. 


Does that approach represent a 
change in strategy? I wouldn't 
say it’s a change in strategy as 
much as I would say it’s a 


| change in emphasis. Isolation 


and resiliency was something 
that we always understood. 


| Being more pragmatic about 
| how it could be used is what's 


different. If you look at why 
did we do Windows XP SP2, 
the original idea was, with the 


| firewall built into Windows 
| XP turned on, a customer 


wouldn't have been attacked 
by Blaster, even if they’d never 
installed a patch in their life. 
... We'll of course always 
work to improve quality. We’re 
not letting up the gas at all on 


| that. But as you go in and per- 


haps fix some of the quality is- 
sues, there is the risk of break- 
ing things. You can introduce 

more problems, so you have to 


do that in a measured way. 


@ 47348 


their security and privacy training 
to their day-to-day work. 

Charney said Microsoft has 
also launched a project called the 
Trustworthy Computing Inquiry 
Board, modeled after the Nation- 
al Transportation Safety Board. 
Microsoft currently does root- 
cause analysis, he noted, but that 
may not be enough. Some of his 
staff members took a course to 
learn more about the NTSB’s 
methodology, which involves an- 
alyzing the series of events that 
occurred before and after an ac- 
cident to see if it could have been 
prevented, Charney explained. 

“They're trying this process to 
see what the report looks like in 
comparison,” he said. “We con- 
tinue to try and think outside the 
box.” 

~ Carol Sliwa 
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Accenture Awarded 
DHS Border IT Deal 


The U.S. Department of Homeland 
Security said it has picked a team 
of vendors led by Accenture Ltd. 
to design, install and support a 
visitor-tracking system for land- 
border crossings. The contract 
could be worth up to $10 billion 
over 10 years. The system, called 
US-VISIT, needs to be in place at 
the 50 busiest land crossings by 
year’s end, the DHS said. (For 
more on US-VISIT, see Pimm 
Fox’s column on page 26.) 


Nortel Sees No Fast 
End to Restatement 


Nortel Networks Corp. said it won't 
finish a restatement of its 2003 
financial results and report this 
year’s first-quarter numbers by 
June 30. Brampton, Ontario-based 
Nortel also said that the Royal 
Canadian Mounted Police are re- 
viewing its accounting to see if an 
investigation is warranted. Nortel 
already faces a criminal probe in 
the U.S. and investigations by reg- 
ulators in the U.S. and Canada. 


SCO Ends Dispute 
With Key Investor 


The SCO Group Inc. said it will 
buy back preferred shares held by 
BayStar Capital LP for $13 million 
plus 2.1 million common shares. 
The deal resolves a dispute be- 
tween SCO and Larkspur, Calif.- 
based BayStar, which has criti- 


dor’s Unix software business and 
the high-profile stance that SCO 
adopted in its legal battles against 
Linux vendors and users. 


Short Takes 


Natick, Mass.-based CRM vendor 
EDOCS INC. has bought Minne- 
apolis-based Firepond Inc.’s 
Brightware unit, which makes 
e-mail response management and 
customer service chat tools. The 
price wasn’t disclosed. . . . F5 
NETWORKS INC. in Seattle said it 
has acquired MagniFire WebSys- 
tems Inc., a firewall vendor in 
New York, for $29 million. 


EMC Packages Centera— 
With Software, Services 


WHAT EMC IS OFFERING 


Disk array bundles 
provide storage for 
compliance efforts 
BY LUCAS MEARIAN 
MC CORP. today plans 
to announce three 
technology bundles 
that combine its Cen- 
tera fixed-data disk array with 
software and technical ser- 
vices for storing e-mail and 
documents to support regula- 
tory compliance initiatives. 
The preconfigured offerings 
include e-mail archiving tools 
from EMC’s Legato Software 
division, pius document 
archiving and retrieval soft- 
ware from the storage ven- 
dor’s Documentum unit and 
Mobius Management Systems 
Inc. in Rye, N.H. 
EMC said the bundles can be 
used stand-alone or as part of 


| information life-cycle manage- 


ment (ILM) applications that 
also involve its mainstream 


| Symmetrix and Clariion arrays 


and its Celerra network- 
attached storage devices. 
The combined offerings 


give users more of a plug-and- 


play approach to buying stor- 
age hardware and software 
than does the a la carte sales 
model that EMC typically 
uses, said John Gubernat, the 
vendor’s director of global so- 
lutions for compliance and en- 
terprise content management. 


| Patched Together 


CareGroup Inc., a Boston- 


based company that operates 


| six hospitals, uses Symmetrix, 


Clariion and Centera devices 
as part of an ILM system for 

storing radiology images, pa- 
tient records, e-mail and data 


| from PeopleSoft Inc.’s ERP ap- 


plications. But CIO John Ha- 


gether the ILM setup the hard 


| way, without the benefit of a 


packaged offering. 
EMC’s announcement 


| should be “very good news” 
| for users that haven’t adopted 


a do-it-yourself strategy yet, 


| Halamka said. He added that 
| CareGroup over the past three 


years has combined EMC’s 


| storage hardware, Cisco 
| switches and middleware in 


Software 


® Legato EmailXaminer for 
Exchange and Notes 

® Documentum Content Server, 
Compliance Manager, Records 
Manager and Trusted Content 
Services 


@ ViewDirect TCM 


Services 
® EMC installation and 
project management services 


w Joint EMC/Mobius data 
migration assistance 


| an effort to address the regula- 
| tory requirements of the 
lamka said his staff cobbled to- | 


Health Insurance Portability 
| and Accountability Act. 
CareGroup’s storage-area 
network backs up data from 
| 175 Windows servers and 25 
| clustered Unix systems, stor- 
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10-year mark, the records are 
shifted to Centera. 

Halamka wouldn't disclose 
the cost of the project, but he 
said CareGroup is saving more 
than $3 million a year. Most of 
the savings can be attributed 
to not having to publish pa- 
tient records on paper and ra- 
diological images on celluloid. 

“Now the entire organiza- 
tion runs on electronic re- 
cords,” Halamka said. “Our 
system will show you which 
X-ray has been shot and what 
class of storage it lives on. So 
if you click on something shot 


| yesterday, you get it immedi- 


ately. If it’s something shot a 


| year ago, you get it in 30 sec- 
| onds. If it was shot 10 years 


ago, it takes a full minute.” 
Peter Gerr, an analyst at En- 
terprise Storage Group in Mil- 
ford, Mass., said EMC’s new 
packages may give users in 


| regulated industries a level of 


comfort on compliance. 
“They’re also proving that 


they’re working to integrate 


their acquisitions,” Gerr said. 


| “I don’t think it’s a mistake 
| that two of the three bundles 


| ing X-rays and clinical records | include Legato and Documen- 


| that are new or less than a 

| year old on the high-end Sym- 

| metrix arrays. Files and im- 

| ages that are less than 10 years 

| old are stored on Clariion de- 
vices. Once they surpass the 


tum software.” 


EMC didn’t disclose its pric- 
ing for the new bundles, say- 
ing that costs will vary widely 
depending on the configu- 
ration. @ 47339 





Microsoft Tightens Links 
Between Office, CRM Apps 


| crease ties between the CRM 


| BY MARC L. SONGINI 
cized the Lindon, Utah-based ven- | 


Microsoft Corp. in August 
plans to add features to its 
CRM software that are de- 
signed to offer users tighter 
integration with Office 2003. 
The software vendor last 


| week announced that it’s de- 
| veloping an add-on feature 


pack for its Microsoft CRM 1.2 


| applications, which were re- 
| leased in December. Existing 


users will be able to install the 
new functionality without 
paying any additional license 
fees, according to Microsoft. 
Microsoft is using its Office 
Information Bridge Frame- 
work, which is based on Web 
services technology, to in- 


| applications and Office 2003. 


End users will be able to cre- 


| ate and track sales letters and 


retrieve customer-related data 


| in Office without having to 


switch back and forth between 


| that software and Microsoft 


CRM, the company said. 

“It’s a way to have fewer 
clicks to get information,” said 
Holly Holt, group product 
manager for Microsoft CRM 
within the vendor’s Business 


| Solutions unit. For instance, 
| when a user is writing a letter 


to a customer, a separate win- 
dow will pop up and provide 
data about previous dealings 


| with the customer, Holt said. 


Similarly, closer links be- 
| tween Microsoft CRM, Office 
| and Microsoft’s Windows 


tion software should help 
speed the creation of sales 
proposals, she added. 

| There will also be changes 
| to the client administration 

| tools that help manage end- 


be able to configure the sys- 
tem so users can access calen- 





| off-site but be restricted from 

| saving customer data locally, 

| Holt said. In addition, data 

| synchronization can be stag- 
gered based on the type of in- 

| formation that’s involved. 

The feature pack will fix 

| some basic shortcomings in 

| the CRM software, but it’s just 

| a “baby step” for Microsoft, 

said Shery] Kingstone, an ana- 


| SharePoint Services collabora- 


user privileges. IT staffers will 


| dar information while working 





| lyst at The Yankee Group in 


Boston. Kingstone noted that 
she’s awaiting better off-line 
performance with Microsoft’s 
Outlook e-mail client as well 


| as additional sales, service and 


marketing capabilities. “A big 
problem with Microsoft CRM 
has been performance and us- 
ability,” she said. @ 47353 
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Offshore Threat Debated at 
Hearing on Network Security 


Vendors put on defensive before I louse 


BY GRANT GROSS 

WASHINGTON 

Offshore software develop- 
ment is one factor behind the 
escalation of exploitable net- 
work vulnerabilities, accord- 
ing to testimony at a hearing 
on network security before a 
U.S. House subcommittee last 
week. 

Software companies must 
add more controls to the de- 
velopment process for soft- 
ware produced outside the 
US., said Steve Solomon, CEO 
of Citadel Security Software 
Inc. in Dallas. 

“Software development or- 
ganizations should be re- 
quired to have all overseas- 
developed software examined 
for malicious capabilities em- 
bedded in the code,” Solomon 
told the House Government 
Reform Committee’s Subcom- 
mittee on Technology, Infor- 
mation Policy, Intergovern- 
mental Relations and the Cen- 

s. “Industry and govern- 
ment must work together to 
develop some form of stan- 
dard or review process to ad- 
dress this growing threat.” 

Soiomon’s comments were 
rebutted by representatives 
from Microsoft Corp. and Ju- 
niper Networks Inc. 

“Tt really doesn’t matter 
where software is developed,” 
said Dubhe Bienhorn, vice 
president of Juniper Federal 
Systems. “It is a process that 
requires very tight controls 
and very intense scrutiny.” 


Cheap Solution 


Solomon defended his com- 
ments by pointing out that 
software vendors see offshore 
development as “easy and 
cheap.” 

“Maybe my colleagues on 
this panel have [secure off- 
shore] processes in place,” he 
added. “A lot of companies 
don’t.” 

Subcommittee chairman 


Rep. Adam Putnam (R-Fla.) 
focused some of his questions 
on the process of patching 
software after vulnerabilities 
are discovered. When Putnam 
asked whether the patching 
process and the alert process 
that accompanies it are work- 
ing well, Scott Culp, senior se- 
curity strategist at Microsoft, 
said he believes that software 
vendors are working hard to 
notify customers. 

“We have a very active in- 
terest in making sure as many 
people as possible know about 
our mistakes and how to fix 
them,” Culp said. 

Asked by Putnam if he’s sat- 
isfied with the patch and alert 


process Microsoft now has in 
place, Culp responded that 
he’s never satisfied. “I'd like to 
send out a lot fewer of those 
alerts,” he said. 

Putnam started the hearing 
by taking both private compa- 
nies and government agencies 
to task for not mov- 
ing fast enough to 
address continuing 
cybersecurity con- 
cerns. “As a nation, 
we have taken very 
dramatic steps to in- 
crease our physical 
security, but protect- 
ing our information 
networks has not 
progressed at the 
same pace, either in 
the public or in the 
private sector,” Put- 


er Bu) 
PCRs Ome) 
COU m Ome! 
addressing cyber- 
Ramu 
Peas 


nam said. “I remain concerned 
that we are collectively not 
moving fast enough to protect 
the American people and the 
U.S. economy from the very 
real threats that exist today. .. 
The time for a 


False Sense of Security 


Solomon also suggested that 


ction is now.” 


companies that rely on patch 
management services have 
“false security” and may be 
neglecting larger problems. 
For example, they may not 
have broad security 
policies or plans for 
after at- 
On average, 


recovery 
tacks. “ 
only 30% of an orga- 
nization’s verified 
vulnerabilities relate 
to patching, leaving 
their networks ex- 
posed to the remain- 
ing 70% of the prob- 
lem, which are more 
dangerous and easily 
exploited,” 
“These products do 


he said. 


Alcoa to Ship 70 IT Jobs to India 


Positions currently 


outsourced in U.S. 


BY JAIKUMAR VIJAYAN 
Global aluminum giant Alcoa 
Inc. confirmed last week that 
it plans to outsource 130 jobs, 
including about 70 IT posi- 
tions, to an India-based ser- 
vices provider as part of a 
move to reduce costs. 

The jobs will move to India 
in phases over the next 18 
months; the transition will 
result in the elimination of an 
equal number of positions 
from the Pittsburgh-based 
company’s North American 
data center in Upper Burrell, 
Pa., and a business service 
center in the region. 

A “vast majority” of the af- 
fected jobs are already out- 
sourced and are currently be- 
ing performed by a U.S.-based 
services provider, said Kevin 
Lowrey, a spokesman for the 
company. The only difference 
under the new arrangement is 
that the jobs will be handled 
by an offshore contractor 


| 


| 
| 
| 
| 


instead of a domestic one, 
Lowrey said. He declined to 
name the U.S.-based services 
provider. 

The outsourced positions 
are in groups that deliver 
chargeback services to other 
businesses within Alcoa, 
Lowrey “They want to be 
as low cost and as effective as 
they can be,” which is the rea- 
son for moving them offshore, 
he said. “We are a global com- 
pany, and we will continue to 
source globally” where it 
make sense, he added. 

The affected jobs represent 
about 6% of Alcoa’s workforce 
in the Pittsburgh metropolitan 
area. The $21 billion company 
has about 120,000 employees 
worldwide. 

The size of Alcoa’s work- 
force has been declining since 
2000, when it employed about 
142,000 people. However the 
number of workers in the 
Pittsburgh area has been in- 
creasing, according to a re- 
searcher at the Pittsburgh 
Business Times, which tracks 
local employment statistics. 


said. 


News of Alcoa’s plans to 
ship jobs to India comes at a 
time when U.S. companies are 
increasingly reluctant to talk 
about their offshore moves be- 
cause of the strong sentiment 
against the trend. 

The growing lack of trans- 
parency is making it difficult 
to get a true handle on the lev- 
el of offshore outsourcing 
that’s taking place, said Mar- 
cus Courtney, president of the 
Washington Alliance of Tech- 
nology Workers in Seattle. 


Corporations 

are doing 
everything they can 
to keep their activi- 
ties and the number 
of jobs being moved 
overseas from being 
publicized. 
MARCUS COURTNEY, PRESIDENT 


WASHINGTON ALLIANCE OF 
TECHNOLOGY WORKERS 


| gets out, he sa 
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not address the problem of 
full life-cycle vulnerability 
management and effectively 
become part of the problem.” 
hal, executive 
vice president at ABN Amro 
Holding NV in Ch 
on the subcommittee 


Louis Rosent 


icago 
to find 
ways to encourage software 
vendors to accept responsibil- 
ity for the role their products 
play in supporting U.S. critical 
infrastructure. He also asked 

the subcommittee to support a 
measure that would hold soft- 
ware vendors more account- 
of their 


—— 


able for the quality 
sce wt and for 

patch support for older b 
still viat 
software. 


ble versions of the 


Incentives like tax breaks, 
cybersecurity insurance and 
lawsuit reform could encour- 
age software companies to 
make more secure products, 


Rosenthal added. @ 47343 


Gross writes for the IDG 
News Service. 


WashTech operates a Web site 
that tracks companies that 
have outsourced jobs to over- 
seas locations. So far, the orga- 
nization has compiled a list of 
250 companies culled from 
media reports and insider tips. 

“Corporations are doing 
everything they can to keep 
their activities and the num- 
ber of jobs being moved over- 
seas from being publicized,” 
Courtney said. 

It’s also getting harder for 
companies to keep a lid on the 
information if they’re inclined 
to do so, said Stan Lepeak, an 
analyst at Stamford, Conn.- 
based Meta Group Inc 

“There’s definitely a trend 
away from the days when 
companies would tout such 
deals,” Lepeak said. And it’s 
becoming harder to get infor- 
mation on how many jobs are 
being outsourced or what the 
dollar value of such deals 
might be, he said. 

“But its hard to keep it a se- 
cret,” Lepeak said. Regulatory 
requirements, disgruntled 
workers or the presence of a 
labor union almost always en- 
sure that word of such deals 


id. @ 47340 
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Business application software seldom 
fulfills its promises. In fact, installing 
on time and on budget is almost 
unheard of i in the industry. That's why 
ted to doing things 

We're breaking away from 

“and services that put time on your 
side. Our applications can help you to 


| Streamline processes, reduce costs, 
improve Service and create a bigger LAWSON 
ean adv tee, So you can 
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It’s Time: 
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Continued from page 1 


Solaris 


Sun servers, including one 
with an Oracle Corp. database 
containing 50 million records. 
Verity said he opted for Solaris 
over Linux because it’s strong- 
ly supported, secure and well 
maintained. Although Verity 
said using Linux is becoming 
less of a security concern, he 
plans to stick with Solaris. 

Allowing developers to 
make contributions to source 
code is a good thing, said Veri- 
ty. “We like to get at source 
code, because we think we can 
do more interesting things 
with it,” he said. 


‘Open-Source’ 
Solaris 


Semele im TAIL) mts) 
its Java Community Source 
force eM elt cl masts) tee 


The reason: Overseas 

fire lce Cee Ct Ogee 
Cle meee) Cue 
and Sun may be hoping to 
slow movement to Linux on 
low-end systems. 


The timing: Sun isn’t saying, 
but Solaris 10 is due by the 
end of the year. 


Continued from page 1 


strator at Guidant Corp. “I 
felt that with all the bad fi- 
nancial stuff going on on his 
watch, why is he still hanging 
around?” 

Harzewski said that several 
years ago, she had felt pres- 
sured by CA salespeople to 
sign contracts on a certain 
date “with pressure from man- 
agement above.” 

“We don’t need the distrac- 
tions of the accounting irregu- 
larities, so I think he should 
fall on his sword and get out of | 
the way,” echoed a longtime 
CA user who spoke on condi- 
tion of anonymity. “He should 
start a club with former CIA 
director George Tenet.” 

Other users had less-critical | 
comments. 


Shanghai last week, Jonathan 


At Sun’s announcement in | 
Schwartz, Sun’s president and _ | 
chief operating officer, said 

the company would “take the | 
model that we used with Java” | 
and extend it to Solaris. “Make 
no mistake, we will open- 
source Solaris,” he said. 

But open-source advocates 
maintain that the Java licens- 
ing scheme isn’t a true open- 
source model because it still 
gives Sun control over the fi- 
nal product, said Eric Ray- 
mond, president of the non- 
profit Open Source Initiative. 
“We don’t think we have 
grounds for optimism here,” 


he said. 

Jon Hall, executive director 
of Linux International, a ven- 
dor group based in Amherst, 
N.H., that promotes Linux use, 
said the fact that the announce- 
ment was made in Shanghai 
suggests that it was aimed at 
countries such as China that 
are pushing open-source over 
proprietary systems. 

But analysts doubt it will 
have much impact on com- 
mercial users. 

“T don’t think that they 
will care whether or not So- 
laris is developed using an 
open-source model,” said Per- 
ry Donham, an enterprise sys- 
tems consultant at Collabor- 


“Companies using CA 
should be concerned about 
how all these management 
shifts affect products and sup- 
port, but I don’t see a big im- 
pact on the user level,” said 
Carmen Huff, president of the 
North America Ingres User 
Association and lead database 
administrator at Alliance Data 


| Systems Inc. in Dallas. “The ex- | 


citement about open-source for 
Ingres and other products is 


| not going to be diminished by 


what’s happening with Sanjay.” 

Huff said she welcomes the 
investigations by the U.S. Secu- | 
rities and Exchange Commis- 
sion and the U.S. Attorney’s 


| Office into CA’s accounting 
| practices. “Somebody high up 
| has to watch what’s happening 


at the top of these companies,” 
Huff said. Government offi- 
cials couldn't be reached at 


| deadline on Friday to comment 


NEWS 


Sun Offers Subscription Plan for Storage 


SUN last week said it will begin 
offering a subscription-based pric- 
ing model on its disk arrays that 
lets customers pay a monthly fee 
for use of the hardware plus stor- 
age management tools and ongo- 
ing technical support. 

In addition, Sun announced its 
first disk array based on low-cost 
Serial ATA drives for secondary 
storage applications. The compa- 
ny also introduced a midrange ar- 
ray with enterprise-class features 
and said it plans to add a line of 
network-attached storage devices 
this fall through a reseller deal 
with Procom Technology Inc. in 
Irvine, Calif. 

Sun's pay-as-you-go storage 
pricing initially is being offered on 
its high-end StorEdge 9980 array, 
although the company said it even- 
tually plans to extend the approach 


ative Consulting based in 
Woburn, Mass. “They will 
care that the software works 
and that they can get support 
from Sun.” 

Unix systems, primarily 
IBM’s AIX, Hewlett-Packard 
Co.’s HP-UX and Solaris, are 
losing ground to Linux and 
Windows. According to mar- 


on any possible actions involv- 
ing CA or Kumar. 

Chris Poole, president of the 
Florida CA Users Group and 
senior analyst at Convergys 
Corp. in Jacksonville, credited 
Kumar with “dramatically im- 
proving the quality of products 
when he took over as CEO.” 
Specifically, he said, Kumar 
pulled CA workers off devel- 
opment of new products to 


| produce a patch for its Unicen- 


ter line of management tools. 
Richard Evans, senior vice 
president of Neways Interna- 
tional Inc. in Springville, Utah, 
said he would have “loved to 
see Sanjay stay ... because his 
knowledge of technology was 


| outstanding and he was good 


in customer service.” 
Some analysts said Kumar’s 


| decision to leave CA may have 


been prompted by pending le- 
gal action by federal authori- 


| for Sanjay personally,” said 
| Rich Ptak, an analyst at Ptak, 


to other models. The monthly cost 
starts at $1.95 per gigabyte for a 
three-year contract. 

Companies that adopt the sub- 
scription-based pricing will pay 
only for the capacity they use, 
eliminating upfront storage costs. 
“This is not a capital expenditure 
for customers,” said Adam Men- 
doza, director of strategic alliances 
for Sun's Network Storage Prod- 
ucts Group. “This is intended to be 
an operational expense.” 

Sun also announced an up- 
grade of its policy-based file man- 
agement software that adds dy- 
namic data archiving capabilities 
plus a new graphical user interface 
and management wizards. Version 
41 of the Storage Archive Manag- 
er-Quick File System (SAM-QFS) 
software can support up to 1 peta- 
byte of data, four times more than 


ket research company IDC, 
866,000 Unix operating sys- 
tem shipped worldwide in 
2000. That number declined 
to 622,000 in 2002. IDC is still | 
assembling its 2003 data, but 
analyst Dan Kusnetzky said 
he expects that those num- 
bers will also show a decline. 

“I think Sun is trying to 


ties. “This is not good news 


Noel & Associates in Amherst, 
N.H. “There was no real rea- 
son for Sanjay to leave unless 
the government made it clear 


| to management staff that he 


was going to be indicted.” 

CA Chairman Lewis Ranieri 
issued a statement Friday sug- 
gesting that Kumar’s depar- 
ture will help settle the gov- 
ernment’s investigation of CA. 

“The [CA] board is commit- 


| ted to reaching a settlement of | 
| the government’s investiga- 
| tion into the company’s past 


accounting practices as quick- 
ly as possible,” Ranieri said. 
“We are working hard to take 
the remedial steps necessary 


| to put this entire matter be- 
| hind us. Sanjay’s decision to 
| leave CA was made in that 

| spirit.” 
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the current release supports. 

Chris Peterson, vice president 
of IT at Earth Satellite Corp. in 
Rockville, Md., has been beta- 
testing the new release of SAM- 
QFS for two months, using it to 
store satellite images of the earth, 
which his company sells to NASA 
and other customers. 

Each time a backup took place 
on his old system, the entire file 
system had to be scanned to de- 
termine whether a file had been 
archived, a process that could take 
minutes or even hours and eat up 
100% of his server's CPU cycles. 

“Now they've built intelligence 
into the file system itself, so when- 
ever someone creates a new file, 
[the software] automatically places 
it into an archive list,” Peterson 
said. “Then all we do is tell the 
archiver to archive what's been 
changed.” 

- Lucas Mearian 


slow down or perhaps halt the 
erosion of its base by trying to 
offer in Solaris the things that 
are perceived as attractive 
about Linux and other open- 
source environments,” said 
Kusnetzky. They include the 
ability to have some input and 
make source-code changes, he 


said. @ 47345 


Company officials declined 


| to comment beyond the state- 
| ment. In April, Kumar had 
| been ousted from his position 


as chairman and CEO and as- 
sumed the title of chief soft- 


| ware architect. 


“Tt has become increasingly 
clear to me in the past few 


| days that my continued role at 
| CA is not helping the compa- 
| ny’s efforts to move forward,” 
| Kumar said in the statement. 


“I understood that my step- 


| ping down as chairman and 


CEO represented a break with 


| the past, but I have reluctantly 


concluded that as long as I 


| hold any position, focus on 


past issues and my current 


| role will continue.” @ 47368 


MORE ONLINE 


For additional CA coverage, visit us online 
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Start-u _ Finalizes Suite 
a 


Of IT 


ITM adds module that 
supports IT governance, 
regulatory compliance 





BY THOMAS HOFFMAN 
Start-up vendor ITM Software Corp. 
has completed the development of an 
integrated suite of IT management ap- 
plications that early users and analysts 
said is something akin to an ERP sys- 
tem for CIOs. 

The ITM Business Suite is a set of 


nagement Apps 


ment and CIO at LifeScan Inc., 
tas, Calif.-based subsidiary of Johnson 


| & Johnson that makes blood-glucose 


monitoring systems. “Other software 


- | companies have asked me for my feed 


| back, but not with the level of discus- 
| sion that they had.” 


ITM began beta-testing its technol- 
ogy in late 2002, and LifeScan installed 


| the vendor’s base module early last 
| year. This month, it plans to start de- 
| ploying the vendor relationship man- 


five software modules designed to help | 


IT executives manage vendor relation- 
ships, project portfolios and the proc- 
ess of aligning internal IT skills with 
business needs. Last month, the Moun- 
tain View, Calif.-based 
company added an IT 
governance and regu- 
latory compliance 
application and for- 
mally announced the 
entire suite. 

The ITM Gover- 


NEW SOFTWARE 


ITM Governance 
And Compliance 
Management 


agement application, Fackler said. 

The software will run on a Linux- 
based application server that’s 
equipped with BEA Systems Inc.’s 
WebLogic middleware and connects to 
a report server running Windows 
2000. Fackler said she 
plans to evaluate the 
IT governance appli- 
cation after the rollout 


ship module. 
Kevin Kryzda, CIO 
for the government of 


a Milpi- 


of the vendor relation- | 


Dillard’s department stores hire over 10,000 people a 


year. Storing and retrieving application, training and 


benefits packets had become costly. So Dillard’s bought 
into something smart: a Xerox Office Document 
Assessment (ODA). 

Xerox examined their work process across all 
14 Dillard’s business units and recommended key 


improvements. 


IDENTIFIES applications that 
are of materia! importance to 
regulatory compliance initia- 
tives and pinpoints those that 
could pose the most risks. 


Oe eeeeeerrcreseseeereseses 


ESTABLISHES a single source 
of information about internal IT 
processes and management con- 


Martin County, Flori- 
da, said his IT depart- 
ment is deploying 

ITM’s project portfo- 
lio module and ex- 

pects to start running 
the software on either 


nance and Compliance 
Management module 
can be used to docu- 
ment corporate IT 
processes and ensure 
that they aid efforts to 
comply with the Sar- 


First, all analog copiers, stand-alone printers 
and fax machines were replaced by Xerox 
DocumentCentre’ multifunction systems. Then Xerox 


DocuShare’ was installed on Dillard’s network. 


banes-Oxley Act and 
other regulations, the 
company said (see 
box). The software 
supports the use of 
standard governance 
models, such as the IT 
Infrastructure Library 
and the Control Objec- 
tives for Information and Related 
Technology, or CobiT. 

Dennis Gaughan, an analyst at AMR 
Research Inc. in Boston, said software 
for managing IT governance activities 
and portfolios of technology projects 
is available from several other vendors, 
including Changepoint Corp., Mercury 
Interactive Corp. and Niku Corp. 


Soliciting Feedback 
But over the past 18 months, ITM has 
solicited detailed feedback from more 
than 150 CIOs on functionality they’d 
like to see in its suite, Gaughan added. 
“ITM does a better job of customer 
partnering than any vendor I’ve ever 
worked with,” said Madeleine Fackler, 
vice president of information manage- 


trols and then automatically 
tracks their status. 


INCLUDES analytical tools that 
can be used to address questions 
such as how mature different IT 
procedures are and whether 
any are failing. 





Sun Solaris or Red 
Hat Linux this month. 

Martin County, 
which is on the At- 
lantic coast about 
halfway between 
Miami and Orlando, 
began restructuring 
its IT department 
three years ago. In doing so, “we want- 
ed to make sure we were measuring 
how effectively we were meeting busi- 
ness objectives,” Kryzda said. ITM’s 
software should help support that goal, 
he added. 

For IT departments with 50 to 100 
workers, ITM’s pricing starts at about 
$100,000 for the base module and one 
application. The software supports 
Oracle databases and can run on Win- 
dows, Linux and Solaris operating sys- 
tems. @ 47303 





A Meta Group Inc. survey finds that less than 20% of 
large companies have formal governance committees: 
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Sony Pulls Plug on PDAs Outside Japan 


BY TOM KRAZIT 


In another sign that conven- 
tional handheld devices have 
lost the cachet they once en- 


joyed with users, Sony Corp. 
last week said that it won’t add 
any new models to its Clie 
product line outside of Japan 


Learn from 
the best in 
the business: 
Teel es 


for at least the rest of this year. 

Sony said in a statement that 
it still views mobile devices as 
a key component of its busi- 


ness strategy. But for now, the 
Tokyo-based company added, 
it “is reassessing the direction 
of the conventional PDA mar- 
ket” and focusing Clie product 
development and sales on the 
Japanese market only. 
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| again,” he said. @ 47305 





Sony shipped just over 
100,000 Clie units in the U.S. 
during the first quarter, good 
enough for third place among 
handheld vendors, according 
to market research firm IDC. 
The U.S. sales accounted for 
nearly half of Sony’s overall 
shipments during the quarter. 
But IDC said worldwide Clie 
sales plunged 50% from the 
same quarter a year earlier, far 
exceeding an industrywide de- 
cline of 12%. 

Users of handheld devices 
are increasingly looking to 
buy mobile phones and con- 
verged smart phone devices, 
said IDC analyst Alex Slawsby. 
Voice support is quickly be- 
coming essential, he added. 

Sony has already mapped 
out a mobile phone strategy 
through its Sony Ericsson Mo- 
bile Communications AB joint 


| venture, and Slawsby said 
| there’s little evidence of col- 
| laboration between the Sony 


Ericsson and Clie teams. He 


| noted that Sony Ericsson has 


made a strong commitment to 
the Symbian operating system, 
and Clie is the highest-profile 

product line based on the rival 
Palm OS technology outside 


of PalmOne Inc.’s devices. 


| Flooding the Market 
| Over a three-year period, Sony 
|| released about 30 Clie models 


in the U.S. market, said Todd 
Kort, an analyst at Gartner 
Inc. The plethora of new mod- 


| els alienated some users who 


didn’t want to buy a handheld 


| when a new one would be ar- 


riving soon, he added. 
Kort said that even though 


| | Sony’s share of the worldwide 


PDA market fell to 8% in the 
first quarter, its withdrawal 
from the U.S. market could 


| substantially affect Palm OS 
| developer PalmSource Inc. 


PalmSource now will get 
about 90% of its operating sys- 


| | tem business from Milpitas, 


Calif.-based PalmOne, accord- 
ing to Kort. Just eight months 


after the two companies sepa- 


rated in a strategy designed to 
foster independence, “almost, 
in effect, they’re back together 


Krazit is a reporter for the IDG 


| News Service. 
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ONLY ONE DBMS 


GIVES Y 


For your next generation of applications, move 
to the next generation of database technology. 

Caché is the post-relational database that com- 
bines high-performance SQL for faster queries and 
an advanced object database for rapidly storing 
and accessing objects. With Caché, no mapping 
is required between object and relational views of 
data. That means huge savings in both development 
and processing time. 

Applications built on Caché are massively scala- 
ble and lightning-fast. Plus, they require minimal or 
no database administration. 

More than just a database system, Caché incor- 
porates a powerful Web application development 


U BOTH 


environment that dramatically reduces the time to 
build and modify applications. 

The reliability of Caché is proven every day in 
“life-or-death” applications at thousands of the world’s 
largest hospitals. Caché is so reliable, it’s the leading 
database in healthcare — and it powers enterprise appli- 
cations in financial services, government and many 
other sectors. 

We are InterSystems, a specialist in data manage 
ment technology for twenty-five years. We provide 
24x7 support to four million users in 88 countries. 
Caché is available for Windows, OpenVMS, Linux and 
major UNIX platforms — and it is deployed on systems 
ranging from two to over 10,000 simultaneous users. 


InterSystems & 


Ee. CACHE 


Make Applications Faster 


Try a better database. For free. 





Working-from-Home Walter 


Financial Officer 


RO. Ida, The Chief 


Mr. “T Have Security Issues” 
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Mobility: Teamwork 


@ How to be more competitive, more productive, and, uh, more in sync. 
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Learn how to mobilize your team and increase business 
productivity. Download “The Anytime, Anyplace 
World” white paper at >>nokiaforbusiness 
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MARYFRAN JOHNSON 


Defending Boundaries 


WO WEEKS AGO in this column, I 
asked if you noticed — or cared about 
— the blurring of boundaries between 
editorial content and advertising. The 
question followed my apology for a 


mistake we made in our 
May 24 issue, where we 
inadvertently placed an 
advertisement for Nick 
Carr’s Does IT Matter? 
next to an excerpt from 
his book and an inter- 
view with the author. 
(You can read my editor- 
ial at QuickLink 47014.) 

One reader summed 
up the whole problem 
perfectly: “Advertising 
should be kept at a dis- 
tance from anything that represents 
the opinions of the media publishers. 
Otherwise it presents the appearance 
of impropriety, even if there is none.” 

The ads were part of a barter deal 
our events division struck with Carr 
and his publisher last spring. In 
place of his customary speaking fee 
for appearing at the Computerworld 
Premier 100 IT Leaders conference, 
we agreed to run some ads for his 
upcoming book. But the unfortunate 
placement of the ad made it look as 
though we were actively participat- 
ing in the PR campaign for the book 
(we aren’t), or that we'd agreed to 
help publicize it in hope of addition- 
al advertising revenue (we hadn't). 

To my great relief, many of you not 
only noticed, but you cared quite a 
bit. (See three of your letters on the 
opposite page.) But the concerns I 
heard expressed went beyond the 
importance of maintaining a clear 
separation of editorial content from 
advertising in print. They also en- 
compassed the escalating invasion of 
ads into online content. 

“The technologies available on the 
Web create an entirely new set of ad- 
vertising capabilities and journalistic 
conflicts that mostly go unreported 
(or underreported),” wrote one secu- 





rity expert. “Bang this 
drum often and loud.” 
Another, more cynical 
reader observed: “Reader 
trust in print is continu- 
ing to wane. The battle 
for online integrity has 
been lost.” 
I hope that isn’t true. 
But there’s no denying the 
fact that the online world 
has established distinctly 
different (and uncomfort- 
ably cozy) editorial/ad- 
vertising adjacency standards. On- 
line ads are sold by matching desired 
keywords with related content, mak- 
ing sure that an ad about storage, for 
example, will pop up near stories 
about storage. And the latest tech- 
nology developments in online “con- 
textual” advertising now let an ad- 
vertising link be embedded inside 
the actual story. 
To Brian Milum of Marietta, Ga., 
that invasion is bad news, and it’s 


bound to backfire. “I think hypertext 





links that lead to advertisements do 
an even greater disservice to the 
reader, the advertiser and the Web 
page authors,” Milum wrote. “When 
I click a hyperlink (no matter what 
color it is), I expect to be taken to a 
page that provides additional infor- 
mation about the highlighted item — 
not to an advertisement.” 

A few readers, like Hank Wieland, 
marketing services vice president for 
the Telecommunications Industry 
Association, wondered how we 
would prevent a similar adjacency 
mistake from happening again, and 
whether Computerworld has any 
rules of conduct in place to ensure 
journalistic integrity. We changed 
the adjacency process to involve a 
third person scrutinizing editorial 
and ad placement, and we have also 
posted our longstanding editorial 
code of ethics online [QuickLink 
a4620]. Among other things, those 10 
principles state that we must be 
committed to our readers, that our 
reporting must be fair and unbiased 
and that we must correct errors 
promptly and completely. 

But of all those principles, the one 
that matters most is: “Editorial deci- 
sions are made free of advertisers’ 
influence.” I’m grateful that you’re 
right behind us on that one. @ 47316 
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PIMM FOX 


The 


Security 
Privilege 


RECENTLY CAUGHT Tom 
Cruise in Mission: Impos- 
sible on TV and marveled 


at the movie’s use of IT. Tom’s 
team of experts can break into govern- 
ment databases, launch probes of the 
Internet and find the proverbial digital 
needle in a haystack. 

While Hollywood is great at setting 
the standard for IT imagination, the 
reality is more prosaic. That’s why I’m 
not afraid of the U.S. government’s 
plan to spend $15 billion on a new 
whiz-bang network of databases to 
track foreign visitors. At least not 
afraid it will work. 

There are more than 300 land, sea 
and air border-crossing points in the 
USS., and the government is swamped 
trying to screen for 
terrorists. 

The plan, dubbed 
US-VISIT, is to cre- 
ate virtual borders so 
that the more than 
300 million annual 
visitors to the U.S. 
will be checked be- 
fore they even get to 
the land of amber 
waves of grain. Once 
in the U.S., visitors 
could be monitored 
or at least checked 
against a giant database that would 
have links to local law enforcement, 
banking and educational systems. 

Part of the plan to link 20 federal 
databases includes real-time authenti- 
cation. This would possibly entail 
the use of photographs, fingerprints, 
iris-scanning and facial-recognition 
technology, and radio frequency chips 
embedded in passports. 

To privacy acvocates, this all sounds 
like a George Orwell nightmare. And 
certainly no one wants the U.S. govern- 
ment to use personal information for 
nefarious activities. 

I don’t think we need to worry. 

The government already has tons of 
data it can use against individuals — 
everything from old, unpaid parking 
tickets to long-overdue student loans. 
(As Raymond Chandler said, “Every- 
body has something to conceal.”) But it 
doesn’t use the information. 





AT&T VIRTUAL PRIVATE NETWORKS. Can your network play well with others? Can it share information with 
customers across the country? Or communicate with employees acr ne globe? AT&T designs, implements 
and manages Virtual Prive \ y to share all your business-critical applications over 
the Internet. They even allow you to evolve your ne ks at your own pace, while delivering reliable, 
open for the people you 
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Atsit For a network 1-888-889-0234 


The world’s networking company* 





Business players are scattered 
across the globe and AT&T is 
uniquely positioned to offer 
the most comprehensive set of 
network- and premises-based 
Virtual Private Network (VPN) 
solutions to help keep your 
clients, suppliers, business 
partners and remote workers 
connected. Now that’s bringing 
the world of business together. 


AT&T’s VPN Portfolio includes: 


© Global implementations that 
help your business expand. 


© Network resiliency with 
class of service capabilities 
supported by industry-leading 
service level agreements (SLAs). 


e Leading-edge network 
architectures for united 
connections with a variety 
of access options available. 


e Secured networking with 
privacy, encryption and 
authentication capabilities. 


e¢ Management continuum 
ranging from a 
customer-managed to an 
AT&T managed solution, 
including proactive network 
monitoring and management. 


For more information, contact your AT&T 


Representative, or visit www.att.com/networking. 


AT&T VPN Portfolio offers a comprehensive suite of global network- and 
premises-based implementations that range from individual components to 


tailored end-to-end solutions supporting the advanced application needs of 


today’s enterprises — extending to critical members of your SCM, CRM and 


ERP business models. 


AT&T Network-based VPNs utilize Multiprotocol Label Switching (MPLS), 
an advanced IP routing technology, to provide globally consistent networking 
environments designed to provide the flexibility of distributed communications 


with traffic prioritization through classes of service. 


AT&T Premises-based VPNs are delivered by adding intelligent devices to 
the customer premises over either the AT&T Global IP Network, for users 
requiring a high performing network, or the Internet, for users requiring 
ubiquitous access with extended reach. AT&T offers multiple tunneling 
options, including IP Security (IPSec) and Secure Sockets Layer (SSL), 
allowing you to tailor your premises-based solution to meet your 


networking requirements. 


“Customers feel safe with AT&T. That is a very rare accolade indeed, 
given the trauma of operating in the global telecoms environment in 
recent times.”— Janet Watkin, Telemark Consulting UK 


In a recent Telemark Consulting UK poll, AT&T’s IP VPN Services were 
rated, “Excellent” by network managers worldwide. 


According to Forrester Research, AT&T is the best in the VPN business 
with a future-proof global VPN architecture. — Choosing The Right VPN, 


Forrester Research, Inc., March 2003 


IDC Rated AT&T top of all U.S. IP VPN managed carriers for market 


share and market leadership. 
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But privacy advocates haven’t con- 
sidered the possibility that conve- 
nience will win out. At Amsterdam’s 
Schiphol Airport, fast-track security 
lanes that use iris-scanning technology 
are already in operation. 

Called Privium, this membership- 
only program is restricted to European 
Union passport holders. There are two 
types of membership. Privium Basic 
costs about $125 per year for the luxury 
of speeding through security lines. The 
$145 Privium Plus offers you separate 
check-in facilities for your flight as 
well as priority parking. 

The application process is online. 
And, intriguingly, you can link your 
frequent-flier numbers to Privium. 

So here’s a suggestion for Accenture, 
which last week beat out Computer 
Sciences and Lockheed Martin in 
the bidding for the contract to build 
US-VISIT: It should include free trans- 
portation, free parking and extra fre- 
quent-flier miles. Every visitor who 
agrees to submit to an iris scan or 
some other sophisticated biometric 
test should receive a travel voucher for 
a free trip to the city center. 

This program would do two things: 
It would segregate, without racial or 
ethnic profiling, those unwilling to join | 
the program, and it would reduce con- 
gestion at border entry points. 

And as for the frequent-flier miles, at 
least we know that those database pro- 
grams seem to work. @ 47220 
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A World 
Without 
Secrets 


S THE investigations 
continue into the 
abuse of Iraqi prison- 


ers in Abu Ghraib prison, at 
least one thing is clear: The incidents 
might never have come to the public’s 
attention had it not been for the digital 
photographs taken by soldiers. 
Something else is clear, and it affects 
all large organizations: Keeping some 
kinds of secrets is becoming much 


other, their wider distribu- 
tion was almost inevitable. 

The phenomenon isn’t 
just about cameras, though 
images plainly are more 
powerful than mere text. 

Weblogs, Internet chat 
rooms and message boards 
have become a means by 
which anyone can dissemi- 
nate just about any kind of 
information. By adding pho- 
tos, that information would 
be far more compelling. 

As gadgets get ever small- 
er and more powerful, the secondary 
effects of this trend will grow in scale 
and implications. Traditional respons- 
es will fail. 

Some organizations have tried ban- 
ning camera phones in certain situa- 
tions. Health clubs are banning them 
to prevent locker room pictures from 
making their way onto the Internet. In 
July 2003, Samsung, the giant Korean 
manufacturer, banned the use of cam- 
era phones in its factories, fearing the 
escape of trade secrets. Unquestion- 
ably, there’s more of this to come. 
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But we’re rapidiy ap- 
proaching a time when 
cameras will be essentially 
undetectable. They’ll be 
part of our clothing, our 
eyeglasses or other garb, if 
we choose to make them 
so. Eventually, cameras will 
be as small as particles of 
dust, and they’ll contain ra- 
dios that can send what 
they see (and hear) to com- 
puters nearby, and then to 
who knows where. 

Science fiction author 

David Brin envisioned this kind of 
thing years ago. His prescription was 
transparency on both sides — a world 
where citizens could spy on govern- 
ments as they spy on us, for example. 
We might someday reach a détente 

of sorts, granting ourselves zones of 
| privacy. 

That world, I hope, is a long way off. 
Sometimes governments must keep se- 
| crets. But they tend to reserve the right 
to keep everything secret while simul- 
taneously reserving the right to spy 
| on everything we do. The balance is 
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beginning to shift, to a degree, though, 
as the Iraq prison pictures showed. 

IT people will be asked by their 
bosses to prevent the escape of infor- 
mation. They'll be tempted to use mea- 
sures such as digital-rights manage- 
ment for documents, in an attempt to 
keep vital data from getting to com- 
petitors. And I expect to see wider 
bans on the use of mobile phone cam- 
eras in the relatively near future, how- 
ever futile that might be. 

My advice is to lighten up on the 
small stuff. Companies should be more 
transparent in their workings to begin 
with. When they tell their customers, 


| employees and even competitors what 


they’re doing, they’re doing more to 
enhance communications than to cre- 


ate competitive problems. 


I don’t have a magic answer here. 
But trying to contain it all strikes me as 
futile. It’s scary, but it’s reality. 

@ 47237 





"WANT OUR OPINION? 


More columnists and links to archives of previous 
columns are on our Web site 
www.computerworld.com/columns 





more difficult. 

In the Iraq prison case, if the mili- 
tary and the Bush administration had 
wanted to keep this abuse covered up, 
it wasn’t possible. Once the photos had 
been taken and started to make their 
way from one soldier’s computer to an- 


Crossing the Line 


HANKS TO Maryfran Johnson 

for her editorial on advertising/ 
editorial boundaries [“Blurring 
Boundaries,” QuickLink 47014}. | 
agree that they should be as sepa- 
rate as possible. | had read the book ‘| 
excerpt “Follow, Don't Lead,” and 
when | noticed the ad for the same 
book on the opposite page, my 
heart sank. 

| enjoy reading Computerworld’s 

articles. Its authors are well-in- 
formed, and the writing is as inter- 
esting and pertinent as it is concise. 
| thought | had finally found a quality 
source of news for the IT indusiry 
But the positioning of that ad led 
me to doubt. There's just so much 
dubious information out there, one 
can't help but become skeptical. It's 
a relief to know that it was a goof. 
Jeremiah Fletcher 
Senior systems analyst, Tufts- 
New England Medical Center, 
Boston, online@ 
jeremiahfletcher.com 


Enna FOR the candid apology 
regarding the poor positioning 
of that book ad. When | saw the fea- 


ture and adjacent ad, | had several 
thoughts, all negative. First, | felt it 





| was a crass sale of an ad's position 
| and wondered how much extra the 

| book publisher paid. Then | won- 

| dered if the ad purchase helped 

| generate the author interview and 
book excerpt. Last, | concluded that 
| your publication had lowered its 


standards on such matters just to 


| make more money. Now, having 
| read your mea culpa, | feel much 
| better, since accidents do happen, 


despite the best processes. But 
how about a follow-up column or 
feature article about the rules and 
procedures in place to ensure jour- 
nalistic objectivity? The Computer- 
world brand is high quality, and 
that’s a key reason | have had a paid 
subscription for many years. Your 
editorial restored my shaken faith, 
but | would like to read more about 
your efforts to prevent future prob- 
lems. 

Hank Wieland 

Vice president, marketing ser- 
vices, Telecommunications In- 
dustry Association, Arlington, 
Va., hwieland@tiaonline.org 


O ANSWER the questions 

Maryfran Johnson poses in her 
“Blurring Boundaries” editorial of 
May 24, | do care. | immediately no- 
ticed the juxtaposition of the ad for 


| the old rules still hold - it’s still very 
| easy to distinguish between infor- 
| mation and advertising, and if | am 


| commercialism, | simply stop read- 
| ing that publication. | view online 


| offended by that ad placement. 





| cured wireless broadband device to 


Nick Carr's book facing an article on 
the same topic and quickly turned 


| the page in embarrassment, leaving | 
| house and requires no security key 


both article and ad unread. No, | 
don't think you're tilting at windmills. | 
However, | also don’t think it's much | 
of an issue in print (yet), because 


confronted too many times by crass | 


advertising as being more along the | 


| lines of the television infomercial, 


and | similarly change the channel 
as quickly as | can. Thank you for 
the apology - | was worried for a 
minute that | was the only person 


Cathy Taddei 
Portland, Oregon 


Wireless Worries 


ARK HALL’S column “Still 

Worried About Wireless” 
[QuickLink 46026] made a valid 
point about security in the home of- 
fice. Case in point: Two of my neigh- 
bors are key IT personnel for two of 
the largest banks in the nation. Both 
work from home and use an unse- 





connect to their offices. This device 
provides access (DHCP-enabled) 
to anyone within 150 feet of their 


When | questioned them, | learned 
that they were unaware that anyone 


| could connect to their network from 
| the street. i offered to help them en- 


able security on their device, but 


| they declined. They are still broad- 


casting IP addresses. | am thankful 


| that! don’t bank with their employ- 


ers, since security seems a low pri- 
ority. OK, maybe it is only these two 
employees, but that would probably 
be wishful thinking. 


| John Bumgarner 
| Security consultant, Cyber 
| Watch Inc., Charlotte, N.C. 


| COMPUTERWORLD welcomes 
| comments from its readers. Letters 
| will be edited for brevity and clarity. 


They should be addressed to Jamie 
Eckle, letters editor, Computerworld, 


| POBox 9171, 500 Old Connecticut 


Path, Framingham, Mass. 01701. 
Fax: (508) 879-4843. 

E-mail: letters®computerworld.com. 
Include an address and phone num- 
ber for immediate verification. 


For more letters on these and 
other topics, go to 
www.computerworld.com/letters 








Control More Computers for Less Money, in Less Space and in Less Time 
with Tripp Lite KVM Switches 
Tripp Lite KVM Switches offer the most economical and convenient solutions available for controlling up to 


512 PCs or servers with a single keyboard/video/mouse console. Save money, space and time by eliminating 
unnecessary consoles, removing cable clutter and avoiding the need to move between multiple consoles. 


16-Port 1U Rackmount 


¢ All-in-one console KVM switch includes a keyboard, 15” LCD screen, 
touch pad and 16-port KVM switch in an easy-glide 1U rack drawer 


¢ Built-in on-screen display gives you control over all ports 
¢ Daisy-chain capability and two-level password security 


* 2 models available (one features integrated 
console KVM switch as shown) 
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8-Port 1U Rackmount 
¢ Slim 1U cabinet design with daisy-chain capability 


* On-screen display gives you control over all ports 


4-Port Desktop 


Tripp Lite 
KVM Switches— 


* Compact desktop design with individual port selection button 8 et The Perfect Toy for 


¢ Notebook and wireless-ready 


2-Port Desktop 


¢ Compact desktop design with individual port selection button 


Control Freaks! 


* Notebook and wireless-ready 
¢ Includes 2 cable kits * 
'For more information on Tripp Lite KVM switches, 


or to locate a reseller-partner, 
visit Tripp Lite's website: 


| http://www.tripplite.com e . oS 
ie 2) [Xe}900 


Resellers: For special demo unit pricing, call Matt Mulac at 773-869-1091. 
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www.tripplite.com 
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Chicago. IL GOGO9 
(773) 869-1234 
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THE DEPOSITORY TRUST 
& CLEARING CORP. 


Data Replication 
Scheme Pushes 
Recovery Distances 


EO OMG Tora eC 
Perretti moved his 
business continuity 
eae Mut) 
than 1,000 miles 
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Redesigned Database 

Improves Traffic Safety 
Representatives from three Michigan state 
agencies helped redesign a traffic accident 
database to help save lives, improve high- 
way design and reduce costs. Page 33 


BY LUCAS MEARIAN 
George Perretti had received a 
lot of praise for the business 
continuity and disaster recov- 
ery infrastructure he helped 
build six years ago for The 
Depository Trust & Clearing 
Corp., which is responsible for 
Continued on page 32 


Handhelds Help Refineries 

Quickly Spot Problems 

Bill Johnson at Lyondell-Citgo Refining is 
using IntelaTrac handheld devices to move 
the refinery from paper-based systems to com- 
puterized workflow management. Page 36 


Not satisfied 


with the status 

uo, these 
Cuutanndl 
Honors finalists 
demanded more 
from technology. With a vision 
of the future — and hard work — 
they found new ways to cut waste, 
advance their industries and, in some 
cases, save lives. 
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Meet the IBM eServer™ i5 system — designed to simplify your infrastructure. It’s the first IBM server with POWERS” 
technology. And the latest member of the IBM eServer iSeries” family. What’s more, it can simultaneously run four 
operating systems, dynamically allocating resources needed for each application and operating system! On demand. 
iSeries technology can also help reduce the number of servers you manage by as much as 85%. We invite you to 
learn more about how to make your business more efficient. Just visit ibm.com/eserver/consolidate 
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The IBM eServer i5 system. 


(© ser ver Consolidate. Integrate. Celebrate. 





COMPUTERWORLD June 7, 2004 


elise 


BUSINESS & RELATED SERVICES 


= Accenture Ltd. - Overseas U.S. citizens cast votes 
with confidence from any Internet-capable PC, doubling 
the number that can participate in elections. 

= BizRate.com - The world's largest independent shop- 
ping search engine provides 1 million users each day'with 
prices, availability and consumer ratings 


® Equifax Inc. - Automated monitoring and reporting of 
credit files alerts consumers to transactions that-may’be 
the result of identity theft 


= Exostar LLC - End-to-end encryption assures that 
only two users - the sender and intended recipient - can 
read Internet-delivered documents (see story, this page) 


See i yi mma MUL arenes Oy LAMM Taree eB STO) S) Cat 
scans systems and Internet addresses, keeping the Uni- 
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to students and staff 
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= Case Western Reserve University - The world’s 
fastest metropolitan network provides Gigabit connectivity 
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= Harvard Medical School - Students access an entire 
medical school.curriculum online with wireless devices, 
moving easily from classroom to library to home 


= MIT and Sapient Corp. - The materials used in the 

teaching of virtually all university and graduate subjects 

are made available without charge on the Internet, pro- 

moting the university's mission 

Set UCit Bm Molt Meme moa Ole ln elm sie-l]| (a 
idged recorded books, together with large-print 

NES OSCAR vho can't read traditional type 

= University of Michigan - Collaboratively developed, 

-oriented digital resources and multimedia ini- 
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MENT, ENERGY & AGRICULTURE 


= Calpine Corp. - One of North America’s leading power 
compar sliable and profitable operation 
by means of consolidated Internet information portals 


= Galp Energia SGPS SA - The first-ever‘system for 
omer identification by fingerprint allows drivers one- 
purchasing of gasoline 


= Little Diversified Architectural Consulting 

Integr atural light analysis into 3-D architecture 
ete stainable buildings that 

Flea Cle MOM arc LOULeUML(e 
rp./Lyondell-Citgo Refining LP - Mobile 
management technology catalyzes a new focus 
ve and preventive maintenance 
ng costs and elimir 


story, page 36) 
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Continued from page 29 

clearing $23 trillion worth of se- 
curities annually. Then came Sept. 
11, 2001, and Perretti realized he 
needed to push the edge even 
further — more than 1,000 miles 
further. 

DTCC, a New York-based firm, 
provides the primary infrastruc- 
ture for the clearing and settle- 
ment of the majority of the equity, 
corporate debt and bond trans- 
actions in the U.S. And although 
DTCC continued to operate 
through the Sept. 11 terrorist at- 
tacks on New York and Washing- 
ton, Perretti and his C-level execu- 
tives knew the company could be 
targeted next. 

“In 2002, we put together a task 
force to look how far we could go 
outside of the region and still pro- 
vide recovery-within-hours time 
frames. We have very strict time 
frames for recovery, required by 
the Fed,” Perretti says. 

The task force looked at a num- 
ber of items, including IT staff dis- 
tribution and diversity, to ensure 
that remote data centers would 
have the proper personnel to run 
them if the other data centers 
were destroyed. The task force 
devised an architecture of remote 
data centers dispersed throughout 
the New York region and beyond 
that would simultaneously repli- 
cate data among them. 

But of all the components of the 
multihop remote data-replication 
scheme, none was more challeng- 
ing than ensuring that the data 
would be consistent as it was 
replicated so that if any one site 
was lost, the data could be rebuilt. 

“The most difficult part was 
synchronizing the amount of data 
we have — 6TB of addressable 
storage,” says Bella Zgut, vice pres- 
ident of database management at 
DTCC, referring to the amount of 
mainframe data being replicated 
over the various distances. 

DTCC’s task force was made up 
of a number of IT areas within the 
company, each working on its own 
component and then working with 
the others to come up with a com- 
plete solution. What Perretti and 
other members of his team didn’t 
know was how far ahead DTCC 
was in the disaster recovery game. 

While completing the project, 
an April 2003 interagency white 
paper called for financial firms to 
“maintain sufficient geographical- 
ly dispersed resources to meet 
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recovery and resumption objec- 
tives.” The white paper also sug- 
gested moving disaster recovery 
sites 200 to 300 miles away from 
the primary data center. 

“We didn’t even talk about the 
industry white paper. We were 
ahead of the white paper every 
time they came out with some- 
thing,” Zgut says. 

DTCC chose EMC Corp.’s Sym- 
metrix arrays and its Symmetrix 
Remote Data Facility multihop 
data-mirroring software. The re- 
mote data centers can provide dis- 
aster recovery within three hours 
of disruption and a period of data 
loss ranging from zero to 30 min- 


EXOSTAR LLC 


Collaboration 
Platform Takes 
Security to New Level 


BY DAN VERTON 

It started as a relatively simple 
business-to-business hub. It be- 
came an industry-altering secure 
collaboration platform. 

That’s perhaps the best way to 
describe Herndon, Va.-based Ex- 
ostar LLC’s effort to develop an 
external collaboration 
environment. But it 
wasn’t just any collabo- 
ration project. Forum- 

Pass 2.0, as it was later 
named, was deemed so 
secure that five of the 
world’s largest aero- 
space and defense com- 
panies use it to store 
and share their most 
sensitive data. 

The first version, developed in 
2001, was based on Parametric 
Technology Corp.'s ProjectLink 
software and designed to facilitate 
collaboration among companies 
involved in joint development 
projects. However, the concept 
met substantial resistance from a 
user community that has histori- 
cally been dead set against placing 
sensitive intellectual property in a 
third-party environment with lit- 
tle or no control over who can ac- 
cess the data. 

Enter Exostar, an e-business 
founded jointly by BAE Systems, 
The Boeing Co., Lockheed Martin 
Corp., Raytheon Co. and Rolls- 
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utes. The additional remote data 
centers, which Perretti declined to 
enumerate, also enabled DTCC to 
further decentralize its data pro- 
cessing operations and enhance 
communications. 

Perretti chose redundant, fault- 
tolerant OC3 lines created out of a 
continuous ring of OC48 that was 
sliced down into individual OC3 
lines, some being used for Fibre 
Channel and others for Escon. 

The centers became fully opera- 
tional in May 2003, just over one 
year after the project was kicked 
off — and one month ahead of the 
scheduled June delivery date. 


@ 47053 


Royce PLC with the mission of 
connecting those companies and 
their suppliers and facilitating 
more efficient collaboration on 
major projects. Security was their 
top concern from the start. 

“The CIOs from each company 
{said], ‘Unless our chief security 
officers all sign off on this, we 
absolutely have no intention of 
putting our intellectual property 
outside of our firewall and behind 
yours and all commingled togeth- 
er, ” says Jeff Nigriny, chief securi- 
ty officer at Exostar, who was re- 
sponsible for engineering the new 

virtual collaboration 
environment. 

That first meeting 
led to a two-day con- 
ference of technical ex- 
perts from each of the 
five aerospace compa- 
nies. They ultimately 
developed a list of 87 

aseline requirements 

that they agreed would 
make the collaboration platform 
secure enough to handle their 
data. “For the first time, five of the 
largest aerospace companies 
agreed on what secure collabora- 
tion is and what it should look 
like,” says Nigriny. 

The key to success was enabling 
users from different companies to 
control the data they owned, re- 
gardless of where it was stored. 

“We had to set up a system from 
scratch by which the owners of 
the data could encrypt the data 
with keys that they possessed so 
that not even the Exostar site ad- 
ministrators could recover the 
data,” says Andrew Jaquith, pro- 

Continued on page 36 
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MICHIGAN DEPARTMENT 
OF TRANSPORTATION 


Redesigned Database 


Improves Traffic Safety 
BY JAIKUMAR VIJAYAN 

As a state that averages more than 
450,000 traffic accidents annually, 
Michigan maintains a mountain of 
crash-related data. 

But the 650,000 or so docu- 
ments generated each year as a re- 
sult of those accidents were main- 
tained in an archaic 1970s-era 
mainframe, and it was hard for 
users to access the information for 
legal purposes or safety research, 
for example. Traffic accident data 
sometimes took two years to 
wend its way into the system, 
known as Crash. And outdated 
data input methods often resulted 
in high error rates. 

However, a recently completed 
multiagency project, called Crash 
Process Redesign, has changed 
much of that. The project in- 
volved representatives from the 
Michigan Department of Trans- 
portation (MDOT), the Michigan 
State Police and the Michigan De- 
partment of State — the principal 
users of the Crash database. 

Under the project, the Crash 
database has been migrated to a 
new setting based on Oracle 
Corp.'s technology and Sybase 
Inc.’s PowerBuilder environment. 
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of the older system have been 
streamlined to a single process. In- 
stead of retrieving data from main- 
frame magnetic tapes and storage 
cartridges, users can now access 
data via a browser-based interface. 

The results have been gratifying, 
says Douglass Couto, information 
officer at MDOT. The gap between 
a traffic accident and data avail- 
ability has been cut to 60 days. Pro- 
cessing and hardware costs have 
been reduced, as have data errors. 

“We have identified about $4 mil- 
lion in savings over the next three 
years in decreased cycle times and 
improved quality ys Jack Benac, 
project manager of the Crash re- 
design. More importantly, the re- 
designed Crash system will help 
improve traffic safety and road de- 
sign by identifying accident risks 
and potential causes of traffic 
crashes and deaths, which cost the 
state $9.4 billion last year, he says. 

“The real return here is the re- 
duced loss of life, which, to para- 
phrase a commercial, is priceles: 
Couto says. 

But the upgraded database has 
also made it a lot easier for law 
enforcement officials to retrieve 
accident information, s : 
Arlan Winslow of the Im] y 
Police Department. Winslow re- 
cently used the database to access 
information needed to apply for 
two road-improvement grants. 

“Prior to having this in place, I 
would have had to contact the lo- 


cal county road commissioner and 
the Michigan State Police to get 
the information,” Winslow says. 

The process, which used to take 
five to six business days, was i 
stead accomplished immediately, 
he says. The revised database al- 
lows Winsiow to quickly look for 
accident data using parameters 
such as location, time of day or 
number of accidents. 

Key to the success of the project 
was the extensive collaboration 
that took place among the three 
principal stakeholders and others 
involved in the project, Couto 
says. It took nearly a year to gath- 
er business and technology re- 
quirements from multiple agen- 
cies, local governments, insurance 
companies, educational institu- 
tions and other users of the data- 
base. A joint governance structure 
that included representatives 
from each of the three major proj- 
ect owners provided daily over- 
sight and served as an approvai 
mechanism for ongoing budgeting 
and scheduling. 

Development work was done 
with the help of Electronic Data 
Systems Corp. using Capability 
Maturity Model Lev 
Carnegie Mellon University’s 
Software Engineering Institute. 

Ultimately, the fact that a re- 
designed database “could reduce 
accidents and maybe save some 
lives resulted in a level of commit- 
ment that I haven’t seen in other 
projects,” Couto says. @ 46937 
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SAT CORP. 


Handhelds Help 
Refineries Quickly 
Spot Problems 


BY PATRICK THIBODEAU 
Refineries, otherworldly-looking 
places when seen from a distance, 
are actually marvels of engineer- 
ing complexity, with miles of in- 
terconnected pipes and thousands 
of pieces of equipment processing 
chemicals and petroleum prod- 
ucts. But historically, an essential 
tool for keeping a refinery’s sys- 
tems from breaking down has 
been the lowly clipboard. 

However, paper documentation 
of refinery processes is giving way 
to a technology developed by 
Houston-based SAT Corp. that 
marries handheld devices, radio 
frequency identification (RFID) 
tags and workflow applications. 
Workers are using the technology 
to help ensure smooth and con- 
tinuous operation of refineries’ 
systems. 

Much of what goes on in a 
refinery can be controlled and 
monitored automatically, but 
“there are still things that you 
want someone to physically walk 
by and touch and feel and make 
sure a piece of equipment is run- 
ning well,” says Bill Johnson, reli- 
ability manager at Houston-based 
Lyondell-Citgo Refining LP, which 
is using SAT’s IntelaTrac product. 

Instead of relying on a check- 
list, IntelaTrac reads an RFID tag 
that a worker scans on a piece of 
equipment and then provides 
device-specific data about what 
to check for, how often to check 
for it and what steps to take in 


Continued from page 32 

gram director at @Stake Inc., who 
worked with Nigriny on the en- 
cryption technology. “So you’re 
essentially substituting encryp- 
tion using your own keys for the 
infrastructure that you would or- 
dinarily control.” 

They came up with the revolu- 
tionary idea of using hardware 
storage modules to encrypt data- 
bases and digital certificates from 
VeriSign Inc. to authenticate 
users. Project managers at each 
company were given key servers 
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[IntelaTrac] 

will prompt 
some action. It al- 
lows us to identify 
problems earlier 
and do better trou- 
bleshooting when 
we identify those 
problems. 


BILL JOHNSON, 
RELIABILITY MANAGER, 
LYONDELL-CITGO REFINING 


the event of an abnormal reading. 
“This thing will prompt some 
action,” says Johnson. The hand- 
held may advise anything from ad- 
justing a valve to alerting a super- 
visor. “It allows us to identify 
problems earlier and do better 
troubleshooting when we identify 
those problems,” Johnson says. 


so they could upload documents 
and generate unique keys on their 
browsers for each document. 

The trick was enabling the oth- 
er users’ browsers to decrypt the 
symmetric key, which had already 
been encrypted with a public key. 

The solution, says Nigriny, was 
Security Assertion Markup Lan- 
guage, an XML-based ticket emit- 
ted by ForumPass that travels with 
a document. The user trying to 
decrypt the document presents 
that ticket and the encrypted doc- 
ument to the key server, which 
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Because the data is uploaded 
into the refinery’s computer sys- 
tems, workers can now look for 
trends over longer periods of 
time, he explains. And in a 24- 
hour operation like a refinery, 
where slow changes in pressure, 
temperature or vibration can sig- 
nal the onset of a problem in a 
piece of equipment, a single work- 
er might not be able to detect a 
trend in the course of an eight- 
hour shift. 

Harry Forbes, an analyst at ARC 
Advisory Group Inc. in Dedham, 
Mass., says people often think of 
mobile units as replacements for 
devices already in the control 
room. But, he says, IntelaTrac “is 
really a workflow solution to try 
to capture information that’s in 
the field and make it usable elec- 
tronically very quickly.” 

Forbes says SAT’s technology is 
the leader in the processing indus- 
try. “I don’t think there is a close 
second right now,” he says. 

The return on investment for 
IntelaTrac is hard to measure, says 
Johnson, because it involves cost 
avoidance — an estimate based on 
problems avoided as a result of 
early detection. “We feel like it’s 
paid for itself,” he says. 

Don Frieden, SAT’s CEO and 
founder, says he tells customers 
that reducing costly secondary 
equipment failures can result in 
payback in three to six months. 
He uses the example of an auto- 
mobile water pump: If a leak is 
detected quickly, the cost of repair 
is minimal. But once the water is 
gone, the engine may go as well — 
the secondary failure. Secondary 
failures typically cost eight to 10 
times more than primary equip- 
ment failures, Frieden says. 
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validates the ticket and the indi- 
vidual’s identity. 

“Now the document is in Forum- 
Pass, and only the people who 
have been granted access can see 
it,” says Nigriny. “If you don’t have 
access to the document, there’s 
nothing even there to click on.” 

“Aerospace companies have 
a long, rich history of robust 
perimeter defense,” says Jaquith. 
“The notion that they would let 
somebody else store their data on 
a network that isn’t their own is 
close to revolutionary.” @ 46993 





ROBERTSON 
RESEARCH INSTITUTE 


Software Gives 
Doctors a Virtual 
Second Opinion 


BY EUGENE A. DEMAITRE 

In a developing nation, a physician 
enters his observations of a pa- 
tient’s condition into a tablet com- 
puter. A user-friendly application 
compares the data to a massive 
knowledge base, then requests 
additional information from the 
physician to facilitate a rapid and 
accurate diagnosis through a 
unique “virtual dialogue.” 

That’s the goal of the NxOpin- 
ion project at Robertson Re- 
search Institute, which is testing 
an innovative approach to med- 
ical informatics that’s aimed at 
physicians in underserved com- 
munities. 

According to Dr. Joel Robert- 
son, founder and CEO of Saginaw, 
Mich.-based RRI, the organization 
has been working on NxOpinion 
(pronounced “next opinion”) 
since 1992, when he decided to 
provide physicians with “excep- 
tion-based, rapid diagnostics, for 
when a person fits the textbook 
case but doesn’t get better.” 

The decision-support system 
required the building of interfaces 
for busy physicians and the devel- 
opment of content management 
systems for the huge amount of 


data that users would access and 
add to, Robertson explains. 

“The problem with most [diag- 
nostic support] products is that 

$ are impatient and in a 
ry — they don’t lik pending 
time on re- -entry of datz j 
Barry Heib, a medical doctor and 
an analyst at Gartner Inc. 

“Other databases require doc- 
tors to have a medical informatics 
background. We want NxOpinion 
to be usable by any physician,’ 

Robertson. 
The output must be equally 
user-friendly as the input,” he 
ays, adding that NxOpinion is a 
mobile technology that could 
eventually “reside on a PDA, 
tablet computer or PC and be up- 
dated when those devices are 
synced.” 

“Evidence-based medicine is 
especially important in helping 
physicians [in developing nations] 
make a diagnosis when they m 

ve only one chance to refer a 
patient to a specialist,” says Dr. 
Mark Bates, medical director of 
the NxOpinion project. 

NxOpinion “was designed to 
facilitate and enhance workflow,” 

2s, who participated in pi- 
lot testing in the Dominican Re- 
public. “I nk any of the 
doctors there had seen a tablet 
[PC] before, but they easily picked 
it up. Adding data worked better 
than expected, thanks to the flexi- 
bility of the English/Span 
translation capability.” 

RRI contracted with Sagest« 


Physicians in the Dominican Republic use a tablet PC 
Pg eg cack ee 


Consulting Inc. to develop Nx- 
Opinion. The Grand Rapids, 
Mich.-based company built the 
application with Microsoft Corp. 
technologies. 

“The core of the application en- 
gine takes data, correlates it and 
produces differential diagnoses,” 

ys Keith Brophy, CEO of Sage- 
stone and chief technology officer 
of NxOpinion at RRI, referring to 
the Bayesian logic used by the sys 

It’s a unique way of leve 

g decision theor 

“We wanted dynamic updating 
of dat: evidence is entered, 
the diagnostic options presented 
change,” says Brophy. “We needed 
a fast turnaround of four clicks or 
less, because our testing found 
that if it took three minutes or 
more, a diagnosis would be aban- 
done 

NxOpinion faces several chal- 
lenges, including keeping data 
current, interfacing with existing 
systems and obtaining user feed- 
back, notes Heib. 

Maintaining database integrity 


has required “rigorous validation,” 


Bates says. Data collected in the 
field could lead to the ability to 
track the prevalence of diseases in 
different regions, he adds. 

Another goal of the NxOpinion 
project is to help reduce medical 
errors, which are often the result 
of bad pro rather than inep- 
titude, says Bates. 

Testing will continue in the 
U.S., the Dominican Republic, 

rica and Australia through this 
year and next; RRI plans to re- 
lease NxOpinion in 2005. 

Robertson is also eyeing possi- 
ble long-term goals for NxOpin- 
ion, such as incorporating multi- 
lingual and culture-specific inter- 
faces, using it as an educational 
tool and eventually expanding 
from urgent care to chronic and 
preventive care. 

RRI’s nonprofit status has 
helped it gain cooperation from 
patient-care organizations world- 
wide, since its mission is to help 
save lives rather than compete 
for business. 

“It’s an unusual approach,” s 
Heib. “What they’re trying to do 
is certainly noble and laudable, 
and they’ll hopefully be able to 
add value to health care in under- 
served communities.” 

“We're trying to revolutionize 
medicine, not get rich,” Robertson 
says. @ 46846 
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Continued from page 33 


Emcor ie] oe \ Cem Bel el ele ui cil Melee M 16] [0re] 
new manufacturing planning system, capable of handling 
new complexities, allows a busy manufacturing system to 
upgrade without disruption. 


= Kirchner Corp. - Constantly traveling jewelry sales 
representatives enter new orders through wireless hand- 
held PDAs on the spot, increasing accuracy and factory 
flexibility while reducing delivery times to the customer. 


® Novalux Inc. - intensive simulation of fundamental 
physics enables the design and production of a'radigal 
new laser that can be 50 times smaller and two orders of 
Urls Ue MUN ee Seek 


SUE eae 


= Apple Computer Inc. - A digital music jukebox pro- 
vides Windows and Macintosh users with a fully integrat- 
Tem tS eS) om 


= Kasenna Inc. - A dramatic reduction in bandwidth 
requirements allows even small organizations to offer 
video on demand, lowering the cost of training. 


= Museum of Modern Art (New York) - A streamlined in- 
are M ce ecoB CRA UNO MO) 18k (Re cchO) cob eRe a 
ing more than 4,000 pages to the museum's constituency 
and maintaining connections during major renovations. 


Uti cee tice)! ] Mie lea cicls nent iccoMe) MII M1001 
demand video delivers company news to employees 
in 197 offices in 94 countries. 


= American Museum of the Moving Image - U!tra- 

area erste) RCM ele) ecM-ir-lO) MUA oMATI Abe C case) U1 CO RSet 

ning, storage and retrieval of key items from a collection of 
(0,000 films, recordings and images. 


Ue Nem eile r Meme ualerelrem crear) (ele) cit 
ables the addition of a new set of Arabic-lanquage cours- 
es to meet demand among nonacademics who will use 
PVE |) mR Ulam US ees ce 


® Vizible Corp. - People can now repurpose, package 
Fens mmeg CMU eel RILNIC USMC LEI] 
data source to any device. 


MEDICINE 


= Cogon Systems - Placing complete information in a 
health care provider's hands at the critical “moment of 
care” when clinical decisions are being made improves 
(e)erae-lUelsrlm-lile cal Ae ORNLATcUNe cetyl ct) eet em 


PP ac eg Mem el ee ca cade) mel tr-wcre)¥ ee m 6] c-lner- (orl AL 
proves the rate at which catheter-administered drugs 
reach the areas in the body where they are needed, pro- 
viding particular: benefit to stroke victims. 


PVM et) A eM RSMO Le PCH am On Ccn cl 
FDA approval for computer-enhanced mammogram inter- 
pretation applies its advanced learning algorithms to the 
detection of abnormalities in lung images, increasing ac- 
curacy by providing a second pair of eyes. 

SPB oe eri Ree Mariela cl OR eiale 
PURSE. ss ce Aero URO LLL re (esl Cul) Tere ¢( 
typically unavailable in developing countries and provides 
updated diagnosis response (see story, next page). 


SAT CORP. 


Handhelds Help 
Refineries Quickly 
Spot Problems 


BY PATRICK THIBODEAU 
Refineries, otherworldly-looking 
places when seen from a distance, 
are actually marvels of engineer- 
ing complexity, with miles of in- 
terconnected pipes and thousands 
of pieces of equipment processing 
chemicals and petroleum prod- 
ucts. But historically, an essential 
tool for keeping a refinery’s sys- 
tems from breaking down has 
been the lowly clipboard. 
However, paper documentation 


of refinery processes is giving way 


to a technology developed by 
Houston-based SAT Corp. that 
marries handheld devices, radio 
frequency identification (RFID) 
tags and workflow applications. 
Workers are using the technology 
to help ensure smooth and con- 
tinuous operation of refineries’ 
systems. 

Much of what goes on in a 
refinery can be controlled and 
monitored automatically, but 
“there are still things that you 
want someone to physically walk 
by and touch and feel and make 
sure a piece of equipment is run- 
ning well,” says Bill Johnson, reli- 
ability manager at Houston-based 
Lyondell-Citgo Refining LP, which 
is using SAT’s IntelaTrac product. 

Instead of relying on a check- 
list, IntelaTrac reads an RFID tag 
that a worker scans on a piece of 
equipment and then provides 
device-specific data about what 
to check for, how often to check 
for it and what steps to take in 


Continued from page 32 

gram director at @Stake Inc., who 
worked with Nigriny on the en- 
cryption technology. “So you’re 
essentially substituting encryp 
tion using your own keys for the 
infrastructure that you would or 
dinarily control.” 

They came up with the revolu 
tionary idea of using hardware 
storage modules to encrypt data 
bases and digital certificates from 
VeriSign Inc. to authenticate 
users. Project managers at each 
company were given key servers 
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[IntelaTrac] 

will prompt 
some action. It al- 
lows us to identify 
problems earlier 
and do better trou- 
bleshooting when 
we identify those 
problems. 


BILL JOHNSON, 
RELIABILITY MANAGER, 
LYONDELL-CITGO REFINING 


the event of an abnormal reading. 
“This thing will prompt some 
action,” says Johnson. The hand- 
held may advise anything from ad- 
justing a valve to alerting a super- 
visor. “It allows us to identify 
problems earlier and do better 
troubleshooting when we identify 
those problems,” Johnson says. 


so they could upload documents 
and generate unique keys on their 
browsers for each document. 

The trick was enabling the oth- 
er users’ browsers to decrypt the 
symmetric key, which had already 
been encrypted with a public key. 

lhe solution, says Nigriny, was 
Security Assertion Markup Lan 
guage, an XML-based ticket emit- 
ted by ForumPass that travels with 
a document. The user trying to 
decrypt the document presents 
that ticket and the encrypted doc- 
ument to the key server, which 


Because the data is uploaded 
into the refinery’s computer sys- 
tems, workers can now look for 
trends over longer periods of 
time, he explains. And in a 24- 
hour operation like a refinery, 
where slow changes in pressure, 
temperature or vibration can sig- 
nal the onset of a problem ina 
piece of equipment, a single work- 
er might not be able to detect a 
trend in the course of an eight- 
hour shift. 

Harry Forbes, an analyst at ARC 
Advisory Group Inc. in Dedham, 


mobile units as replacements for 
devices already in the control 
room. But, he says, IntelaTrac “is 
really a workflow solution to try 
to capture information that’s in 
the field and make it usable elec- 
tronically very quickly.” 

Forbes says SAT’s technology is 
the leader in the processing indus- 
try. “I don’t think there is a close 
second right now,” he says. 

The return on investment for 
IntelaTrac is hard to measure, says 
Johnson, because it involves cost 
avoidance — an estimate based on 
problems avoided as a result of 
early detection. “We feel like it’s 
paid for itself,” he says. 

Don Frieden, SAT’s CEO and 
founder, says he tells customers 
that reducing costly secondary 
equipment failures can result in 
payback in three to six months. 
He uses the example of an auto- 
mobile water pump: If a leak is 
detected quickly, the cost of repair 
is minimal. But once the water is 
gone, the engine may go as well — 
the secondary failure. Secondary 
failures typically cost eight to 10 
times more than primary equip- 
ment failures, Frieden says. 


@ 46896 


validates the ticket and the indi- 
vidual’s identity. 

“Now the document is in Forum- 
Pass, and only the people who 
have been granted access can see 
it,” says Nigriny. “If you don’t have 
access to the document, there’s 
nothing even there to click on.” 

“Aerospace companies have 
a long, rich history of robust 
perimeter defense,” says Jaquith. 
“The notion that they would let 
somebody else store their data on 
a network that isn’t their own is 


close to revolutionary.” @ 46993 





ROBERTSON 
RESEARCH INSTITUTE 


Software Gives 
Doctors a Virtual 
Second Opinion 


BY EUGENE A. DEMAITRE 

In a developing nation, a physician 
enters his observations of a pa 
tient’s condition into a tablet com 
puter. A user-friendly application 
compares the data to a massive 
knowledge base, then requests 
additional information from the 
physician to facilitate a rapid and 
accurate diagnosis through a 
unique “virtual dialogue.” 

That’s the goal of the NxOpin 
ion project at Robertson Re- 
search Institute, which is testing 
in innovative approach to med 
ical informatics that’s aimed at 
physicians in underserved com- 
munities. 

According to Dr. Joel Robert- 
son, founder and CEO of Saginaw, 
Mich.-based RRI, the organization 
has been working on NxOpinion 
(pronounced “next opinion”) 
since 1992, when he decided to 
provide physicians with “excep- 
tion-based, rapid diagnostics, for 
when a person fits the textbook 
case but doesn't get better.” 

The decision-support system 
required the building of interfaces 
for busy physicians and the devel 
opment of content management 
systems for the huge amount of 
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data that users wou 
idd to, Robertson ¢ 

‘The problem wit 
nostic support] products 
physicians are i 
hurr they don’t like s 
time on re-entry of 
Barry Heib, a medical docto 
an analyst at Gartner Inc 

‘Other databases re 
tors to have a medical informatic 
background. We want NxOpin 
to be usable by any physician 
says Robertson. 

“The output must be e 
user-friendly as the input,’ 
says, adding that NxOpinion is a 
mobile technology that could 
eventually “reside on a PDA, 
tablet computer or PC and be uj 
dated when those devices are 
synced.” 

“Evidence-based medicine is 
especially important in help 
physicians [in developing nation 
make a diagnosis when they may 
have only one chance to refer a 
patient to a specialist,” says Dr 
Mark Bates, medical director of 
the NxOpinion project. 

NxOpinion “was designed to 
facilitate and enhance workflow,” 
says Bates, who participated in pi 
lot testing in the Dominican Re 
public. “I didn’t think any of the 
doctors there had seen a tablet 
[PC] before, but they easily pick 
it up. Adding data worked better 
than expected, thanks to the flexi 
bility of the English/Spanish 
translation capability. 


RRI contracted with Sagestone 


ntered 
tions presented 
“We needed 
four clicks or 
ess, because our testing found 
if it took three minutes or 
liagnosis would be aban- 
ion faces several chal- 
luding keeping data 
interfacing with existing 
ems and obtaining user 
back, notes Heib 
Maintai database integrity 
i 


is required “rigorous validation,” 


Bates says. Data collected in the 
field could lead to the ability to 
evalence of diseases in 
rent regions, he adds. 
‘ ‘the NxOpinion 
t is to help reduce medical 
; 


which are often the resu 


t 
f bad processes rather than inep- 
le, says Bates 
ting will cé 
the Dominican Req 
i and Austr 
year and next; RRI plans to re 
lease NxOpinion in 2005 
bertson is also eyeing possi 
ble long-term goals for NxOpin 
ion, such as incorporating multi 
igual and culture-specific inter 
faces, using it as an educational 
tool and eventually expanding 
from urgent care to chronic and 
preventive care. 

RRI’s nonprofit status has 
helped it gain cooperation from 
patient-care organizations world- 
wide, since its mission is to help 
save lives rather than compete 
for business. 

‘It’s an unusual approach,” says 
Heib. “What they’re trying to do 
is certainly noble and laudable, 
and they’ll hopefully be able to 
add value to health care in under- 
served communities.” 

“We're trying to revolutionize 
medicine, not get rich,” Robertson 


says. @ 46846 
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= SPSS Inc. and Children’s Memorial Hospital 
(Chicago) - A scientist uses data mining technology to 
Otome CSR BURL Ome At 1M alice on Co 
Pres eese ram elms e CMO Ohi MER LR oO 


Se Chie aR eae clemson met 
aggregates the unused computer capacity of more than 

2 million volunteers for critical projects such as identifying 
drug candidates for treating smallpox, arithrax and cancer. 


SCIENCE 


= Columbus Zoo (Ohio) - Streaming video and audio 
Me RUHL NOt ata OO lac-wAeenne 8) > ate 
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lengths, dramatically increasing Internet bandwidth. 


= Pittsburgh Supercomputing Center - The country’s 
most powerful supercomputer supports more detailed un- 
OCU eR AOR Ne 
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® Virginia Polytechnic Institute and State University - 
NM ORM OMUoca eu ET cee et cimctes (cr) 
from scratch in three months using PCs, dramatically low- 
ering the cost of advanced scientific research. 


Ba Sar vat 


= Air New Zealand Ltd. - Rapid analysis and reporting 
OMe euLUraenueaern cee eee ue yet nl e-em 
Orie P Mea UMe emi Ruel E-Utem new 18) IVA Commelina 
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= Britannia Airways Ltd. - Cabin crews receive detailed 
flight instructions into the same handheld PDAs that they 
Hace oR OMe CMM eee CaaS Se 
Pew emcee 
TU em OC Ot CO 
Lome mmls Es MUU Nee Ra ROR a 
dent scene. 


= Centre for Railway Information Systems - The 
world's second-largest railway system. with 11 million pas- 
Sat ERO AC oe AU met earn eR COU 
Teale eae) ete) Gea 


PUR a mmc enamine 
Transportation Statistics - The agency charged with 
supplying data and statistics to the whole federal trans- 
portation community dramatically improves the speed and 
ode VACA ESA Lee 


SD e ama Rema ed eRe crea emeel at 
investor, developer and operator optimizes the flow of 
materials with a worldwide terminal management system 
enhancing the power of its customers’ supply chains 


= Southwest Airlines Co. - A materials management 
strategy enables an airline's maintenance plan to be imme- 
diately reflected in its material and supply plan. @46504 
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You don’t have to be big to think big. Or to run SAP” With a variety of solutions for small and midsize businesses, SAP is an affordable choice 
for growing companies. Working with partners experienced in your industry, SAP can deliver scalable solutions to make your business run 


more efficiently. And do it faster than you ever thought possible. Visit sap.com/value or call 800 880 1727 to see big ideas for your company. 
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TECHNOLOGY 


FUTURE WATCH 
The Cognitive Personal Assistant 


Carnegie Mellon University researchers are de- 





SECURITY MANAGER'S JOURNAL 
Wireless Hackers Leave No Tracks 


Vacationing Vince Tuesday discovers that 
sloppy security on home WLANs gives 
hackers a launching pad for truly 
anonymous attacks. Page 42 


OPINION 
Pentagon Devises Innovative IT Strategy 


Pressure to maintain existing systems and meet 
new challenges has turned the DOD into an innova- 
tor in supporting real-time responsiveness across 
an enterprise, says Paul A. Strassmann. Page 44 


that may eventually help schedule meetings and 
prioritize e-mail for busy managers. Page 41 


| 
veloping an artificial-intelligence-based system | 
| 





HEN THE ECONOMY 
surged in the late 
1990s, office furniture 
maker Haworth Inc. 
rode the wave. A 
booming demand for 
new office space plus several acquisi- 
tions propelled the 52-year-old compa- 
ny to $2 billion in sales in 2002, making 
it the world’s second-largest designer 
and manufacturer of office furniture. 
As the recession deepened, Holland, 
Mich.-based Haworth took a double hit: 
Not only did sales stall as customers re- 
trenched, but a glut of used furniture 
also hit the market as dot-com compa- 
nies bombed. Sales plunged 40%. 
Looking for ways to bring costs back 
in line with revenue, Haworth in 2002 
embarked on an ambitious program to 
overhaul its supply chain systems. It 
has completed a $14 million rollout of 
transportation and warehouse manage- 
ment systems that have slashed freight 
costs, boosted the efficiency of ware- 


__.______— house workers and pro- 

duced unexpected quali- 
FIELDO tative benefits. 
REPORT ‘ Together, these two 

systems manage the flow 

of Haworth products 
from manufacture through delivery to 
the customer. The Transportation 
Management System (TMS) consists 
of an optimization package called Net- 
Works Transport and a carrier commu- 
nication module called NetWorks Car- 
rier from Manugistics Group Inc. in 
Rockville, Md. The system looks at cus- 
tomer orders, factory schedules, carrier 
rates and availability, and shipping 
costs and produces optimum, lowest- 
cost delivery plans. Plans are produced 
daily and updated every 15 minutes. 
The system also has an automated 
interface that lets Haworth negotiate 
deliveries with its carriers. 

The Warehouse Management Sys- 
tem (WMS) is a customized version 
of iristaWarehouse from Irista Inc. in 
Milwaukee. It tracks and controls the 
flow of finished goods from the receiv- 
ing dock at any of Haworth’s three dis- 


DWIGHT CENDROWSKI 


Haworth’s Jim Rohrer and Micheal Moon saw a 16% reduction in freight costs after implementing TMS. 


Haworth’s 
Supply Chain Project 


OBJECTIVES: Cut costs and boost efficiency 
by moving to new warehouse and transporta- 
tion management systems that: 


® Deliver multipart product shipments 
requiring assembly in correct sequence. 


® Accommodate shipping volumes that can 
vary by factor of 10 from one day to the next. 


® |s flexible enough to accommodate last- 
minute customer order changes. 


CHALLENGES: The warehouse manage- 
ment system, built on a customized version 
of iristaWarehouse, couldn't keep up with 
Haworth’s high transaction volumes. But Ha- 
worth’s database administrators were able to 
work with the vendor to resolve the problem 


PAYOFF: Productivity of warehouse workers 
increased 35%, freight costs were reduced 
16%, and “less-than-truckioad” shipments de- 
clined 50%. Damage to goods in-transit was 
also reduced by half. The transportation man- 
agement system paid for itself in nine months. 


Refurnishin 


THE Supply Chain 


tribution centers to the customer site. 
Acting on shipping plans from TMS, 
WMS directs the movement of goods 


based on real-time conditions of space, 


equipment, inventory and personnel. 
Haworth’s objective for TMS was to 
optimize deliveries from the standpoint 
of freight cost, says Micheal Moon, vice 
president for global information ser- 
vices. That required mapping out more 


efficient routes, minimizing “less-than- 
truckload” shipments and reducing 
damage to goods. 

The goal for WMS was to reduce la- 
bor costs in the warehouse using sever- 
al methods, including “cross-docking,” 
which lets goods earmarked for a spe- 
cific customer move directly from the 
receiving dock to the shipping dock 
without being checked into the system 


By Gary H. Anthes 


| and then picked from inventory. 


It’s a tricky environment for a num- 


| ber of reasons, Moon says. For exam- 


ple, a shipment might have to meet a 


| strict 15-minute delivery window ona 
| dock in New York. And, he says, it isn’t 
| asimple matter of delivering a mono- 


lithic order, like a crate of oranges. 
“You take a standard workstation 
like this,” Moon says, waving his arm 
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around his modular office. “You've got 
the walls, the desk, the overhead files 
and so forth. All these may come from 
different manufacturing sites, all com- 
ing together at a distribution center 
and then to the customer site in a se- 
quence that allows them to install it. 
And maybe the customer wants to in- 
stall his furniture over the weekend. 
You can’t have missing parts off the 
truck, or he may not be able to move 
in on Monday.” 

TMS replaces a mostly manual sys- 
tem aided by spreadsheets and driven 
by “tribal knowledge,” Moon says. 
“Tribal knowledge told you that if you 
are going to Texas, you don’t want to 
stop in Alabama on the way, because it’s 
a little detour.” But the optimization 
software sometimes comes up with 
counterintuitive solutions, he says, and 
it just might tell Haworth planners that 
the freight savings from filling the truck 
with the Texas and Alabama orders 
more than offset the cost of the detour 

Moon says Haworth was counting 
on a 12% reduction in freight costs 
from TMS but is actually seeing 16%. 
The system paid back the initial invest- 
ment in nine months — 15 months 
ahead of schedule. Partial-truckload 


shipments, which are inefficient and 


often lead to damaged goods, have 
been reduced by half. And the labor- 
cost savings from WMS is “significant- 
ly beyond” the 10% to 12% goal, he says. 


Middle Ground 
TMS and WMS run on Hewlett- 
Packard Co. Unix servers. They inter- 
face with two sets of order entry, man 
ufacturing planning and shipping sys- 
tems that service two different furni- 
ture markets. One is served by an IBM 
mainframe system and one by an HP 
Unix system running an Oracle client 
server database. To tie the applications 
on these systems together, Haworth 
uses eGate Integrator, an enterprise 
application integration tool from See- 
Beyond Technology Corp. in Monrovia, 
Calif. It passes customer orders, ship- 
ping plans and shipping notifications 
among the applications (see diagram). 
The SeeBeyond middleware is cru 
cial because of all the disparate systems 
Haworth has inherited through acquisi- 
tions, Moon says. “It really is the magic. 
We found that the ability to plug into 
that black box anyplace you need to 
Baan, Oracle, legacy systems and many 
others working together — has really 
been a key to success. It’s allowed us to 
move a lot faster than if we'd had to 
build all these single interfaces.” 
Another key piece of middleware is 
MetaFrame virtual user interface soft- 


WMS 


taWarehouse 


Distribution centers 
(users) 


Presentation layer 


Citrix MetaFrame 


Presentation layer 


Citrix Me € » 


Delivery 
service center 
(users) 


Freight 
carriers 


ware from Citrix Systems Inc. in Fort 
Lauderdale, Fla. That allowed Haworth 
to move most of the TMS client code 
from the remote distribution centers 

to a central Citrix server in Michigan, 
freeing up network bandwidth and sim- 
plifying software-distribution chores 

“The volume of data going back to 
[TMS] was quite extensive, and if we 
had to go to local desktops, that would 
really increase network traffic,” says 
Brian Kovatch, manager of information 
systems applications design. 

The TMS project went smoothly, 
partly because the system went in with 
no customizations and partly because 
Manugistics had two full-time consul- 
tants on-site for a year. 

WMS was a bit more problematic. 

“In the case of WMS, there were some 
performance concerns, and our data- 
base administrators worked closely 
with the Irista people to help them 
understand where some of the flaws 
were,” Kovatch says. Haworth’s staff 
helped Irista tune some SQL state- 
ments that were inappropriately coded, 
he says, adding that “the vendor wasn’t 
accustomed to our volumes and need 
for response time.” WMS processes 
some 17,500 transactions per day. 

Haworth also considered warehouse 
management products from Optum 
Inc. and Provia Software Inc. but 
stayed with Irista because of “the func- 
tionality and their willingness to work | 
with us,” says project manager Tim 
Boak. Asked if Haworth considered de- | 
veloping a system in-house, he says, “I | 


HP-UX system 


www.computerworld.com 


Contract 
furniture apps 


IBM 2800 


WMS users work in three distribution centers; 
TMS users are mostly transportation planners 


at Haworth’s headquarters. 


Shipping 
notifications 


Shipments 


Orders -- 


Plans 


think the view was that’s what we al- 
ready had.” 

Jim Rohrer, a business applications 
process manager and the key liaison 
between IT and the supply operations 
at Haworth, says the new systems 
haven't just optimized business 
processes; they’ve also fundamentally 
transformed them. “The distribution 
centers were accustomed to getting in- 
formation on labels or on screens, then 
deciding what to do with it and then 
reporting back what they did. I call 
that a ‘signpost’ system,” he says. 

Now it’s more of a “directed” system, 
Rohrer explains. “TMS sets up a plan 
and feeds it to WMS, and WMS says, 
‘Here’s what’s to be done; here’s your 
task list.’ It greatly reduces the amount 
of time it takes a new employee to get 
productive,” he adds. 


Additional Payoffs 


Senior project leader John Stewart says 
that while many software vendors have 
supply chain systems, relatively few of 
the packages include optimization — 
the ability to evaluate a huge number 
of order, carrier and route combina- 
tions and come up with the lowest-cost 
ones. 

Haworth looked at five companies 
and narrowed it down to Manugistics, 
Optum and i2 Technologies Inc. It 
chose Manugistics because of its “great 
references and product features,” Stew- 
art says. TMS was able to handle Ha- 
worth’s complex requirements without 
a single modification, he notes. 


Orders and 
shipping 
notifications 


Common ERP 
applications 


Plans and 
shipments 


Manufac- 


Ordering turing 


Shipping 


Midmarket 
furniture apps 


Oracle on HP-UX system: 


Reductions in freight costs and 
warehouse labor have been the most 
easily measured benefits from the new 
systems, but Haworth has also seen 
other payoffs. TMS sends carriers 
“tenders” — requests to bid on a ship- 
ment — via electronic data inter- 
change or the Web and gets bids back 
automatically. That process used to 
require two phone calls. Now, if an 
answer isn’t received within a specified 
time, the system automatically tries 
another carrier, says Lydia Knowles, 
delivery service center supervisor. 

TMS has improved customer service 
in other, more subtle ways, Knowles 
says. “One of the major benefits of 
TMS is the connectivity between the 
expertise we have in-house and our 
customer needs,” she notes. “Our 
awareness of cause and effect in- 
creased dramatically.” 

Indeed, says Joseph Bardowski, direc- 
tor of logistics, “visibility and optimiza- 
tion are equally important.” Forty per- 
cent of the total system benefits can be 
attributed to things such as the ability 
to project scheduled shipments further 
into the future and the ability to get 
previously unavailable performance 
metrics out of the system, he says. 


@ 46857 


FACING THE HUMAN FACTOR 


Getting users to accept the new system meant 
keeping them in the loop, from the development phase 
through final rollout 
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TECHNOLOGY 


ESEARCHERS at Carnegie | requesting some slides. Fahlman and 


Mellon University are 

developing a computer- 

based administrative 

assistant that draws 

upon artificial intelli- 
gence (AI) techniques to perform rou- 
tine tasks such as scheduling meetings 
for busy managers and filtering and 
prioritizing their e-mail. 

One caveat: It won’t pick up your 
dry cleaning. 

The project, called Radar (short for 
Reflective Agent with Distributed 
Adaptive Reasoning), is being funded 
by the Defense Advanced Research 
Projects Agency under a program 
called PAL, or Personalized Assistant 
that Learns. DARPA provided 
the Radar project, which was 
launched in May 2003, with 
$7 million in first-year funding. 

“What we’re trying to do is 
build an assistant for any busy 
manager who’s overloaded with re- 
quests,” says Scott Fahlman, a research 
professor of computer science at Pitts- 
burgh-based Carnegie Mellon. More 
than 25 researchers spent Radar’s 
first year focused on things such as 
teaching the system to classify e-mail 
and then optimizing its learning 
algorithms. 

According to Fahlman, Radar will 
handle some routine tasks by itself, ask 
for a supervisor’s confirmation on oth- 
ers and produce suggestions and drafts 
that its user can accept or modify as 
needed. 

For instance, suppose a manager 
receives an e-mail from a colleague 


FUTURE 


his team are trying to optimize the 
Radar system to understand the re- 
quest at a basic level, draft a response 
and notify the manager with a message 
like, “Here’s my proposed answer; do 
you accept this?” and then await the 
manager’s response. 

Radar isn’t intended to act just as an 
e-mail filtering system, Fahlman says. 
As a text-in, text-out system, there’s “a 
huge opportunity” for one Radar sys- 
tem to “talk” with another Radar sys- 
tem, schedule meetings and draw in- 
formation from or post it to a compa- 
ny’s Web site, he explains. 

But, Fahlman notes, any release of 
information by Radar is under control 
of the system’s user, who has 
the last word on the privacy 
policies to be observed by the 
automated assistant. 

Using AI, Radar will draw 
] on statistical and symbolic 
| learning. Say a manager demonstrates 
| atendency to deny e-mail requests to 
| hold meetings on Fridays over the 

course of a few months. Radar will 
pick up on this pattern and send a mes- 
sage to the manager asking whether 
the manager prefers to avoid meetings 
on Fridays. The manager can then re- 
spond back to Radar that it should 
| avoid scheduling meetings on Friday 
| mornings but that Friday afternoons 
| are OK, explains Fahlman. 

“What we’re trying to do is blend the 
| 


best of both statistical and symbolic 
learning,” he says. 

Applying AI to natural-language 
understanding is hardly a new concept 


— researchers have been working 

on this for at least 25 years, Fahlman 
notes. But much of the research has 
centered around problem-solving, and 
Radar is “trying to move that work for- 
ward,” he says. 

Researchers who work on machine 
learning “have a number of tools and 
approaches that can be applied to [un- 
derstanding] people’s social network- 
ing skills,” says Dan Siewiorek, direc- 
tor of the Human-Computer Interac- 
tion Institute at Carnegie Mellon 

Some of the technical challenges that 
Fahlman and Siewiorek have encoun- 
tered include trying to provide Radar 
with a sufficient amount of natural- 
language understanding. Another chal- 
lenge, says Fahlman, is equipping 
Radar to build upon a body of knowl- 
edge and programming it to learn from 
its mistakes over time. 

At this point, Radar is being taught 
to learn through its interaction with 
text. However, it’s possible that Radar 
could be taught to understand human 
speech once the project gets further 
along, notes Siewiorek. 

The Radar project “is an interesting 
concept,” says Martin Colburn, chief 
technology officer at National Associa- 
tion of Securities Dealers Inc. in 
Rockville, Md. Earlier in his career, 
Colburn developed mortgage under- 
writing tools with AI engines that sim- 
ulated the trade-offs an underwriter 
makes when looking at underwriting 
guidelines. “This clearly has some ap- 
plicability,” he says. Colburn adds that 
the system could be applied to work- 
load management, such as filing, 
archiving or retrieving documents. 

Although Radar is being funded by 
DARPA for military use, there may 
also be commercial applications that 
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spin off of the research once the proj- 
ect is concluded in the spring of 2008, 
says Fahlman, who notes that the mili- 
tary and civilian applications are very 
similar. Although Fahlman is quick to 
explain that Carnegie Mellon “is not in 
the business” of packaging commercial 
applications, he did say that there 
could be spin-off companies, or other 
companies could end up licensing the 
technology. 

Siewiorek points out that Radar isn’t 
intended to replace administrative as- 
sistants but simply to, um, assist them. 
Says Siewiorek, “[Human] assistants 
are limited in their capacity in being 
able to put a supervisor’s whole life to- 
gether. A machine-based assistant can 


multitask.” @ 47065 
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Radar incorporates several learning modes to continually update a 
base of knowledge about users and their preferences and practices. 
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Wireless Hackers 
Leave No Tracks 


Unprotected WLANs give hackers an 
untraceable way to launch attacks across 
the Internet. By Vince Tuesday 


’M A PARASITE. I didn’t pay 

for the bandwidth I’m us- 

ing right now. I didn’t ask 

for permission to use it — I 
don’t even know whom to ask. | 
But I’m on holiday, I have a 
few bits of work to finish up 
before I can relax, and I need 
to send my e-mail. 

The broadband service in 

the rented house doesn’t work, 
so I stuck in my wireless LAN 


card and found two 1 


SECURITY 
MANAGER'S 
Wired Equivalent Pri- JOURNAL a 


WLANs covering the 

house. One has a Se- 

cure Set Identifier of 
“lopez” and has 


vacy turned on; the 
other has an SSID of 
“default” and no WEP. 

My wireless card has auto- 
matically associated with the 
“default” base station, which 
gave me a Dynamic Host Con- 
figuration Protocol address. 
Now I’m connected to the 
Internet at LIMbit/sec. with 
no fee and no restrictions on 
what I can do. 

When WLANs hit the main- 
stream a few years ago, the se- 
curity focus was on confiden- 
tiality, and vendors included 
WEP to encrypt data in the air. 
WEP has flaws — it might not 
stop a snooper in your parking 
from reading your data — but 
just the fact that “lopez” had it 
turned on was enough to turn 
my attention elsewhere. Why 
hack “lopez” when “default” is 
sending in the clear? 

But having data sniffed from 
the air isn’t the real threat that 
wireless poses. That problem 
is easily solved by using cryp- 
tography. A bigger worry is 
“de-perimeterization,” which 
is a fancy way of saying that 
the walls of the normal for- 
tress model are falling away, 


thanks in part to wireless. In 
the good old days, you inven- 
toried all external connections 
and put firewalls in front of 
them. Now, nearly every orga- 
nization has so many connec- 
tions to the outside that it isn’t 
feasible to set up firewalls to 


control access to all of them. If 


your wireless users need ac- 
cess to all of the internal ser- 
vices, what can you block with 
a firewall? 

And if you’re a 

acker, why bother 

trying to intercept 
data from the traffic 
flying about when 
you can just connect 
to the network and 
pretend to be a legitimate 
client? Once you become a full 
node on the network, you 
don’t have to wait for a client 
to connect to download the in- 
formation you want and sniff 
it. Instead, you can just waltz 
right in and take what you 
want. This is a lot less covert, 
but unless the target has a 
hair-trigger intrusion-detec- 
tion system configuration and 
very good triangulation equip- 
ment, you probably won’t be 
discovered. 

My company’s authorized 


Rogue access points 
in the office are a 
problem we can solve, 
but the real WLAN 
problem that strikes 
| terror into my heart is 
the home user. 





| wireless access points have 


strong authentication, so only 
legitimate clients can connect, 


| but all our exterior defenses 


might be for naught if a staff 
member plugs in a $99 access 
point. 

To protect against this, my 
team and I run regular sweeps 


| to check for illegitimate access 


points that might allow unau- 
thorized users to connect. We 
had a few early run-ins with 
staff when we began the 


| sweeps, but now the autho- 


rized service is so good that 


| everyone is happier using that 


than they would be trying to 
sneak new equipment into the 
office. 


| Insecure Access 


In these sweeps, we've detect- 
ed many access points that are 
transmitting from outside the 
company walls. It’s interesting 
to see that all the bars and 
restaurants near our offices 
have WLANs for waiters to 
send orders to the kitchen. All 


are insecurely configured. 


However, since the worst any- 
one could do is jump the 


| queue for ordering drinks, 


perhaps the low level of pro- 
tection is all that’s necessary. 
The only time I really went 


| white was when a sweep at my 
| company identified more than 


30 unauthorized access points 


| ona single floor. I couldn’t 


imagine why an entire depart- 
ment would go crazy and try 
to provide its own competing 


| WLAN service. 


But when I tried to connect 


| to one of the access points, I 


could get only a printer ser- 
vice Web page. It turned out 
that our printer vendor had 
shipped a batch of printers 
with wireless printing support 
enabled by default. Each was 
functioning as a WLAN access 
point. We disabled the cards 
and asked the vendor to do the 
same with future orders. 


Rogue access points in the 
office are a problem we can 
solve, but the real WLAN 
problem that strikes terror 
into my heart is the home 
user. 

Before WLANs, if I were a 
hacker or virus writer or if I 
wanted to download or share 
illegal material, I had limited 
options. I could use my own 
account and eventually get 
caught after the feds tracked 
the abuse back to me. I could 
steal an AOL account by 
phishing until the feds used 
phone traces to catch me. Or I 
could wander into a Web cafe, 
do my evil deeds and flee, 
leaving closed-circuit TV 
footage, fingerprints and phys- 
ical evidence the feds could 
use to put me behind bars. 

With WLANs, things have 
changed. On most streets in 
big metropolitan areas, a few 
people have broadband, and at 
least one uses it with an inse- 
cure wireless connection. Per- 
haps half of those people turn 
on the Windows XP firewali, 


but that won’t stop an attacker. 


They just get within range and 
connect. There’s no physical 
evidence, no closed-circuit 
TV, and the poor schmuck 
whose broadband connection 
gets used is the one whom the 
feds raid. 

So while the WLAN con- 
nection I’m using now is help- 
ful to me as I finish up my 
work while on holiday, some- 
one else could just as easily be 
using it to launch attacks be- 
fore disappearing anonymous- 
ly back into the night. 

There’s no chance that 
home users will move to two- 
factor authentication for their 
wireless networks, so I’m 
making sure that my current 

| designs for Web-facing infra- 
structure don’t rely on being 
able to track down and stop 

| attackers. Clearly, that’s no 

| longer possible. D 


| WHAT DO YOU THINK? 


This week's journal is written by a real 
security manager, “Vince Tuesday,” whose 
| name and employer have been disguised 
for obvious reasons. Contact him at vince 
tuesday@hushmail.com, or join the dis- 
cussion in our forum: QuickLink a1590 


To find a complete archive of our 
| Security Manager's Journals, go online to 
@ computerworld.com/secjournal 
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SECURITY LOG 


Security Bookshelf 


® Secure Architectures With 
OpenBSD, by Brandon Palmer 
and Jose Nazario; Addison 
Wesley, 2004. = 


OpenBSD is the 
poster child for se- 
cure productionop-  A8CHITECTURES 
erating systems. pensso =f iE 
The team that wrote Ppa 
it takes a paranoid Pe 
approach to the de- nay 
fault configuration. 
For example, the compiler 
defaults to include buffer over- 
flow protection in every pro- 
gram compiled. 

This code might be one of 
the safest on the planet, but 
many OpenBSD advocates 
come across as wide-eyed 
and paranoid. 

Certainly, most companies 
will continue to buy less- 
secure operating systems. 
But this book might change 
the minds of a few users who 
have been put off by Open- 
BSD's reputation as difficult to 
master. It’s well written by au- 
thors who don’t seem te suffer 
the over-the-top passions of 
other OpenBSD advocates. 

This book could be just the 
thing to turn your computer 
into a well-protected system. It 
covers everything from setting 
up and using the system to 
developing under OpenBSD - 
and it had the answer to every 
question | had when setting up 
atest OpenBSD system. 

- Vince Tuesday 


Wireless Security 
Wake-up Call 


Aglobal survey of 100 financial 
services companies, including 
31 of the top 100, drew these 


SECURE 


SOURCE: DELOITTE & TOUCHE LLP, 2004 
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Intrusion Prevention Solutions from McAfee Security. 
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Recursion Readies 
App Dev Platform 


Recursion Software Inc. in Frisco, 
Texas, last week announced Cin- 
ergi, a multilanguage application 
development platform. Cinergi al- 
lows software architects to select 
functionality from applications 


written in Java, C++, .Net, CORBA | 


or SOAP/XML and integrate that 
functionality into new applica- 
tions written in Java, C++, or .Net 


without rewriting code, according | 


to the company. The product will 
be available June 29. Pricing in- 
formation wasn’t available. 


Maximo Nuclear 
Manages Assets 


MRO Software Inc. in Bedford, 
Mass., has introduced Maximo 
Nuclear, an asset management 
system for the nuclear power in- 
dustry. Maximo Nuclear supports 
work, asset and supply chain 
management processes and runs 
on ail major operating systems, 
the company said. An average im- 
plementation costs $500,000 to 
$650,000, according to an MRO 
spokesman. 


AT&T Adds DDoS 
Protection Service 


AT&T Corp. last week announced 
a new service feature called 
DDoS Defense for its AT&T Inter- 
net Protect service. The DDoS 
Defense option provides real-time 
attack mitigation, stopping de- 
nial-of-service and distributed 
DoS attack traffic floods before 
they reach a customer, the com- 
pany said. Pricing wasn’t an- 
nounced. 


Caelo Releases 
E-mail Organizer 
Caelo Software Inc. in Vancouver, 
British Columbia, has released 
Nelson E-mail Organizer Pro 3 for 
Microsoft Outlook. The latest ver- 
sion automates e-mail organiza- 
tion using advanced workflow 
methods, according to Caelo. 
Pricing starts at $69.95 per seat. 
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Pentagon Devises 
Innovative IT’ Strategy 


N A TALK IN MARCH, John Chambers, the 

knowledgeable CEO of Cisco Systems, noted 

that the U.S. Department of Defense is emerging 

as a pioneer in systems architectures. The DOD 

has become an innovator in supporting real-time 
responsiveness across an enterprise. 

Noteworthy is the technology guidance from Deputy 
Secretary of Defense Paul Wolfowitz and the just- 
retired DOD CIO John Stenbit. They proposed strate- 
gies to cope with the war on terrorism as the DOD 
finds itself saddled with a computing and telecommu- 


nications infrastructure that 
consumes over half of the 
department’s IT resources 
[QuickLink 40856]. The 
DOD doesn’t have sufficient 
capabilities to meet rising 
operational requirements. 
Just about all of its assets are 
mortgaged to keep the exist- 
ing systems running. Only a 
radical transformation, now 
defined as the Global Infor- 
mation Grid (GIG), can offer 
a viable way to achieve real- 
time interoperability among 
defense systems. 

Suppliers and contractors 
are replacing obsolete tech- 
nologies with lower-cost products and 
services, but that won't yield sufficient 
funds to pay for urgently needed innova- 
tions. There isn’t enough time to gradu- 
ally swap old technologies for new ones, 
as has been the practice for half a centu- 
ry. New needs can be satisfied only by 
speedy changes in the ways systems are 
designed and operated. 

The DOD is stuck with the fixed costs 
to support well over $1 trillion worth of 
accumulation from mainframe- and 
desktop-centric acquisitions. To escape 
that bondage and confront rapidly rising 
threats to our security, the DOD has 
come up with an architecture that meets 
the new requirements at materially low- 
er costs. It’s an architecture that makes it 
possible to migrate rapidly without the 





resulting chaos seen in the 
efforts to modernize infor- 
mation systems for the Navy 
and the Marine Corps. 

The objective of the GIG 
is to move all DOD applica- 
tions from the current 
broadcast, point-to-point 
and interapplication com- 
munications to a virtual and 
secure, enterprisewide ultra- 
wideband bus. It’s based on 
the operating doctrine of 
“posting information and 
knowledge for real-time 
availability” by means of 
“universal data-element- 
level interoperability.” This 

is quite a mouthful, but it means that the 
GIG will (1) support the entry of data to 
readily accessible files as early as possi- 
ble, and preferably at the point of origin; 
(2) provide users with the improved ca- 
pability to pull whatever data they need, 
whenever they need it; and (3) ensure 
that information security measures are 
applied at every point of entry and exit 
from the GIG. 

The central capability of the GIG will 
be to deliver Six Sigma-quality secure 
messaging, collaboration, services man- 
agement, content assurance, knowledge 
discovery and enterprisewide archiving 
services. The GIG will provide visibility, 
access and delivery of information ser- 
vices to all of the DOD as well as to oth- 
ers engaged in national security. It will 





enable authorized and individually au- 
thenticated persons to search the net- 
works for information services. 

The GIG represents a fundamental 
shift to a service-oriented view of what 
an information infrastructure must make 
feasible. It requires a dedicated and fully 
assured network environment, populat- 
ed with information that’s readily avail- 
able, secure, reliable and scalable on de- 
mand — not just as specified in budget 
estimates. To the extent possible, the 
GIG will use existing applications via 
standard middleware gateways for even- 
tual migration of all information assets 
into the GIG architecture. 

The Pentagon accumulated incompati- 
ble hardware and noninteroperable soft- 
ware because it relied on obsolete as- 
sumptions about technology acquisi- 
tions. To save money as it moves to its 
GIG architecture, the DOD must take a 
new approach that involves the follow- 
ing steps: 

@ Substitute communications band- 
width for computing hardware. 

@ Rely on standardized data in lieu of 
costly integration of unique data. All data 
will have associated metadata to help 
users discover the utility of shared data. 

@ Replace wired networks with wire- 
less connectivity. 

@ Eliminate application-specific archi- 
tectures for enterprisewide grid systems. 

@ Eliminate on-site support for fixing 
hardware and software by using preven- 
tive remote diagnostics. 

@ Apply middleware interfaces to deal 
with nonstandard data definitions. 

@ Implement perimeter security in- 
stead of relying on local security. 

The GIG architecture is a break- 
through in thinking about all informa- 
tion infrastructures. It’s worthy of 
consideration by every CIO, whether in 
business or in government. The develop- 
ment of the GIG warrants watching 
because it’s based on an approach that 
applies to all who depend on informa- 
tion superiority to compete. @ 47255 
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Think Tank 

Legal services for IT contracts may 
be the next function moving offshore; 
plus, ups and downs among software 
vendors and best bits of recent IT 
management books. Page 48 
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OPINION 

Getting to Done 

You can’t complete an IT project suc- 
cessfully if you haven’t defined success, 
says Paul Glen. He suggests that project 
managers think beforehand about how 
they’ll know when the job is done. Page 52 





ITH TECHNOLOGY costs represent- 
ing more than half of all capital 
expenditures at many companies, 
CxOs are pressuring IT managers to 
more closely measure returns on 
technology investments. 

“For the average company, one out of every 50 
revenue dollars is being spent on an IT project, and 
someone is going to watch it,” says Howard Rubin, 
executive vice president at Meta Group Inc. But 
while some companies have taken steps to teach 
IT managers how to understand and even apply 
financial calculations such as internal rate of return 
(IRR) and net present value (NPV), many others 
haven’t, and the financial acumen of tech managers 
is all over the map. 

“Probably 80% of the companies I work with 
are using financial techniques” such as NPV, says 
Barbara Gomolski, an analyst at Gartner Inc. anda 
Computerworld columnist. She estimates that half of 
the midlevel IT managers at those companies have 
received some financial training, and the rest are 
assisted by their finance or accounting divisions. 

But Mark Cotteleer, an 
assistant professor of 
management at Mar- 
quette University in Mil- 
waukee, says financial 
training for IT managers 
isn’t widespread at all, 
and companies often rely 
on vendors to calculate 
return on investment. 

“T hardly think that’s 
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the most appropriate way 
to do it, since [vendors] 
have a vested interest to 
make sure the right an- 
swer comes out at the 
other end,” says Cotteleer, 


“who is also a consultant 


at Arlington, Mass.-based 
Cutter Consortium. 

An ongoing survey of 
180 IT executives from 
Fortune 1,000 companies 
that has been conducted 
since November 2002 
reveals that 46% of IT 
staffs lack a basic work- 
ing knowledge of finan- 
cial concepts. 


SOURCE: 2002 SURVEY OF 130 FORTUNE 1,000 IT LEADERS BY THE 


KELLOGG SCHOOL OF MANAGEMENT AT NORTHWESTERN UNIVERSITY 
AND DIAMONDCLUSTER INTERNATIONAL INC. 
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Some companies are teaching 
IT managers how to calculate 
the financial payoff of IT projects. 
But there's lots of room for im- 
provement. 
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Recursion Readies 
App Dev Platform 


Recursion Software Inc. in Frisco, 
Texas, last week announced Cin- 
ergi, a multilanguage application 
development platform. Cinergi al- 
lows software architects to select 
functionality from applications 
written in Java, C++, .Net, CORBA 
or SOAP/XML and integrate that 
functionality into new applica- 
tions written in Java, C++, or .Net 
without rewriting code, according 
to the company. The product will 
be available June 29. Pricing in- 
formation wasn’t available. 


Maximo Nuclear 
Manages Assets 


MRO Software Inc. in Bedford, 
Mass., has introduced Maximo 
Nuclear, an asset management 
system for the nuclear power in- 
dustry. Maximo Nuclear supports 
work, asset and supply chain 
management processes and runs 
on all major operating systems, 
the company said. An average im- 
plementation costs $500,000 to 
$650,000, according to an MRO 
spokesman. 


AT&T Adds DDoS 
Protection Service 


AT&T Corp. last week announced 
a new service feature called 
DDoS Defense for its AT&T Inter- 
net Protect service. The DDoS 
Defense option provides real-time 
attack mitigation, stopping de- 
nial-of-service and distributed 
DoS attack traffic floods before 
they reach a customer, the com- 
pany said. Pricing wasn’t an- 
nounced. 


Caelo Releases 
E-mail Organizer 


Caelo Software Inc. in Vancouver, 
British Columbia, has released 
Nelson E-mail Organizer Pro 3 for 
Microsoft Outlook. The latest ver- 
sion automates e-mail organiza- 
tion using advanced workflow 
methods, according to Caelo. 
Pricing starts at $69.95 per seat. 


TECHNOLOGY 


Pentagon Devises 
Innovative Il Strategy 


N A TALK IN MARCH, John Chambers, the 

knowledgeable CEO of Cisco Systems, noted 

that the U.S. Department of Defense is emerging 

as a pioneer in systems architectures. The DOD 

has become an innovator in supporting real-time 
responsiveness across an enterprise. 

Noteworthy is the technology guidance from Deputy 
Secretary of Defense Paul Wolfowitz and the just- 
retired DOD CIO John Stenbit. They proposed strate- 
gies to cope with the war on terrorism as the DOD 
finds itself saddled with a computing and telecommu- 


nications infrastructure that 
consumes over half of the 
department’s IT resources 
{QuickLink 40856]. The 
DOD doesn’t have sufficient 
capabilities to meet rising 
operational requirements. 
Just about all of its assets are 
mortgaged to keep the exist- 
ing systems running. Only a 
radical transformation, now 
defined as the Global Infor- 
mation Grid (GIG), can offer 
a viable way to achieve real- 
time interoperability among 
defense systems. 

Suppliers and contractors 
are replacing obsolete tech- 
nologies with lower-cost products and 
services, but that won't yield sufficient 
funds to pay for urgently needed innova- 
tions. There isn’t enough time to gradu- 
ally swap old technologies for new ones, 
as has been the practice for half a centu- 
ry. New needs can be satisfied only by 
speedy changes in the ways systems are 
designed and operated. 

The DOD is stuck with the fixed costs 
to support well over $1 trillion worth of 
accumulation from mainframe- and 
desktop-centric acquisitions. To escape 
that bondage and confront rapidly rising 
threats to our security, the DOD has 
come up with an architecture that meets 
the new requirements at materially low- 
er costs. It’s an architecture that makes it 
possible to migrate rapidly without the 
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(paul@strassmann.com 
once served as the 
director of Defense 

information. The GIG 

plans - at least on paper 
~ look like dreams that 
ought to come true. 


resulting chaos seen in the 
efforts to modernize infor- 
mation systems for the Navy 
and the Marine Corps. 

The objective of the GIG 
is to move all DOD applica- 
tions from the current 
broadcast, point-to-point 
and interapplication com- 
munications to a virtual and 
secure, enterprisewide ultra- 

) wideband bus. It’s based on 
the operating doctrine of 
“posting information and 
knowledge for real-time 
availability” by means of 
“universal data-element- 
level interoperability.” This 
is quite a mouthful, but it means that the 
GIG will (1) support the entry of data to 
readily accessible files as early as possi- 
ble, and preferably at the point of origin; 
(2) provide users with the improved ca- 
pability to pull whatever data they need, 
whenever they need it; and (3) ensure 
that information security measures are 
applied at every point of entry and exit | 
from the GIG. 

The central capability of the GIG will 
be to deliver Six Sigma-quality secure 
messaging, collaboration, services man- 
agement, content assurance, knowledge 
discovery and enterprisewide archiving | 
services. The GIG will provide visibility, | 
access and delivery of information ser- 
vices to all of the DOD as well as to oth- 
ers engaged in national security. It will | 


enable authorized and individually au- 
thenticated persons to search the net- 
works for information services. 

The GIG represents a fundamental 
shift to a service-oriented view of what 
an information infrastructure must make 
feasible. It requires a dedicated and fully 
assured network environment, populat 
ed with information that’s readily avail 
able, secure, reliable and scalable on de- 
mand — not just as specified in budget 
estimates. To the extent possible, the 
GIG will use existing applications via 
standard middleware gateways for even- 
tual migration of all information assets 
into the GIG architecture. 

The Pentagon accumulated incompati- 
ble hardware and noninteroperable soft- 
ware because it relied on obsolete as- 
sumptions about technology acquisi- 
tions. To save money as it moves to its 
GIG architecture, the DOD must take a 
new approach that involves the follow- 
ing steps: 

@ Substitute communications band- 
width for computing hardware. 

@ Rely on standardized data in lieu of 
costly integration of unique data. All data 
will have associated metadata to help 
users discover the utility of shared data. 

® Replace wired networks with wire- 
less connectivity. 

® Eliminate application-specific archi- 
tectures for enterprisewide grid systems. 

# Eliminate on-site support for fixing 
hardware and software by using preven- 
tive remote diagnostics. 

@ Apply middleware interfaces to deal 
with nonstandard data definitions. 

@ Implement perimeter security in- 
stead of relying on local security. 

The GIG architecture is a break- 
through in thinking about all informa- 
tion infrastructures. It’s worthy of 


| consideration by every CIO, whether in 


business or in government. The develop- 
ment of the GIG warrants watching 


| because it’s based on an approach that 
| applies to all who depend on informa- 


tion superiority to compete. @ 47255 
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BRIDGING 


FINANCIAL SKILLS 


some companies are teaching 
IT managers how to calculate 
the financial payoff of IT projects. 
But there's lots of room for im- 
provement. 


Think Tank 


I egal services for IT contracts may 
be the next function moving offshore; 
plus, ups and downs among software 
vendors and best bits of recent IT 
management books. Page 48 


ITH TECHNOLOGY costs represent- 
ing more than half of al! capital 
expenditures at many companies, 
CxOs are pressuring IT managers to 
more closely measure returns on 
technology investments. 

“For the average company, one out of every eo 
revenue dollars is being spent on an IT project, an 
someone is going to watch it,” says Howard i 
executive vice president at Meta Group Inc. But 
while some companies have taken steps to teach 
IT managers how to understand and even apply 
financial calculations such as internal rate of return 
(IRR) and net present value (NPV), many others 
haven't, and the financial acumen of tech managers 
is all over the map. 

“Probably 80% of the companies I work with 
are using financial techniques” such as NPV, says 
Barbara Gomolski, an analyst at Gartner Inc. anda 
Computerworld columnist. She estimates that half of 
the midlevel IT managers at those companies have 
received some financial training, and the rest are 
assisted by their finance or accounting divisions. 

But Mark Cotteleer, an 
assistant professor of 
management at Mar- 


BY THE NUMBERS 


Among Fortune 1,000 
IT leaders surveyed: 
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89% don’t use 
Cem CTR Rte 4 
project success. 


46% say they lack 
reer ut tom Cg 
measuring value. 


28% say they lack 
ee Umea) 


quette University in Mil- 
waukee, says financial 
training for IT managers 
isn’t widespread at all, 
and companies often rely 
on vendors to calculate 
return on investment. 

“T hardly think that’s 
the most appropriate way 
to do it, since [vendors] 
have a vested interest to 
make sure the right an- 
swer comes out at the 


other end,” says Cotteleer, 
‘who is also a consultant 


at Arlington, Mass.-based 
Cutter Consortium. 

An ongoing survey of 
180 IT executives from 
Fortune 1,000 companies 
that has been conducted 
since November 2002 
reveals that 46% of IT 
staffs lack a basic work- 
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Here’s how the Kellogg School at 
aU es CHMOD TESL Mt Cy 
Uae eure Un ceases midi cy 
paper, “IT Portfolio Management”: 


The total quantitative savings or return, 
in hours, dollars or other measurable 
units, generated by an improvement 
effort, divided by the total cost of that 
effort 


The sum of the discounted cash flows 
expected from a business project, less 
the investment amount. The cash flows 
are discounted at the company’s cost of 
capital. In theory, projects with NPV 
greater than zero should be funded 


The compounded annual growth rate 

of a project's net cash flows. In theory, 
a proposal with an IRR greater than the 
cost of capital should be acce 


Mark Jeffery is an assistant professor 
of technology at the Kellogg School of 
Management at Evanston, IIl.-based 
Northwestern University, which is run- 
ning the study. He says companies that 
invest in training IT managers in finan- 
cial know-how tend to generate higher 
returns on their technology invest- 
ments and have better controls in 
place than their peers. “Firms that are 
good at what they do invest in their 
people to improve their financial 
skills,” says Jeffery. 

Some companies, such as Wachovia 
Corp., have been providing financial 
training to IT managers for years. Since 


| all investments greater than $250,000, 


nance group as well as more detailed 


| corporate earnings and revenue fig- 


| case for each IT project and to deter- 
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the late 1990s, the Charlotte, N.C.-based 
financial services company has re- 
quired IT and other managers to apply 
NPV and break-even calculations to 


says Ginny Hartsema, chief financial 
officer for operations, IT and e-com- 
merce. “We believe that financial 
management is a key competency 
[for] managers,” she says. “It isn’t suffi- | 
cient for them to be technically capa- 
ble and not be able to grasp financial 
principles.” 

Wachovia provides managers with 
formal training from its corporate fi- 


training from Hartsema’s group. Wa- 
chovia also plans to roll out a set of 
training modules by midyear with tu- 
torials that range from understanding 


ures to creating accurate financial 
project estimates, says Hartsema. 


Top 40 

At Dublin, Ohio-based Cardinal Health 
Inc., IT managers use a list of 40 top 
priorities to ensure that a project is 
staying on track and aligned with the 
business. One of those priorities is that 
a project is meeting its financial tar- 
gets. The IT division at the $50 billion- 
plus provider of health care products 
and services created a business-inte- 
gration group three years ago that 
works with departments such as sales 
and purchasing to create a business 


mine the best way to measure it, says 
Steve Peale, vice president of IT. 
Members of Cardinal Health’s busi- 
ness integration group, which now 
numbers 40 people, have attended 
seminars and received 520 hours of 
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HIGH-STAKES IT INVESTMENTS 


ONE COMPANY RECOGNIZED as a 
leader in IT financial management is Har- 
rah’s Entertainment Inc. Ten years ago, 
the Las Vegas-based casino operator es- 
tablished an IT business office composed 
of finance and accounting professionals 
who manage the company's portfolio of 
IT projects and its day-to-day IT opera- 
tions [QuickLink 46150]. 

The office works with application de- 
velopment and support teams to build 
detailed annual project budgets and mon- 
itor performance against those budgets 
monthly. It also works with Harrah's capi- 
tal committee to embed NPV and IRR cal- 
culations and systematically monitor IT 
investments, says Heath Daughtrey, vice 
president of IT services. 

In addition, the company is increasing- 
ly applying return on invested capital as 
a barometer of how its IT investments are 
faring. “We focus on return on invested 
capital as a key performance indicator 
when evaluating investment decisions.” 


Daughtrey says. 

At Harrah's, much of the training for 
its 275-person corporate IT staff has 
been focused on its portfolio manage- 
ment techniques, says Daughtrey. “At the 
core of portfolio management is whether 
you're working on the right stuff,” he ex- 
plains. That’s not just about measuring 


business-case and ROI training over 
the past two years. The group initially 
consisted of business people who 
were interested in learning technol- 
ogy, Peale explains. “As we’ve grown 
the group, we hired a number of peo- 
ple with technology management 
skills who knew how to present a 
business case,” he says. 

To help measure the success of its 
financial training, Cardinal Health 
tracks whether IT projects are on time 
and within budget. In addition, the 
company gauges the number of proj- 
ects that have been launched without 
help from the business integration 
group, a figure that’s practically down 
to zero, says Peale. 


Hedging Bets 

For the past 18 months, IT managers at 
Uncasville, Conn.-based Mohegan Sun 
Casino have received instruction from 
the organization’s financial consultants 
on understanding IRR, NPV and ROI 
calculations, but it’s the finance staff 
that does the actual number-crunching 
on IT projects, says Dan Garrow, CIO 





whether an IT project is meeting its finan- 
cial targets but also determining its im- 
pact on operations continuously, he says. 

Last summer, Harrah's created a Fi- 
nancial Management 101-type course for 
staffers who have financial responsibili- 
ties, as well as new IT hires. The half-day 
session familiarizes IT workers with how 
Harrah's IT group accounts for and man- 
ages its IT operations, sets and monitors 
project budgets, and does accounting. It 
teaches them how to read financial state- 
ments “and walks through many of the 
core financial and accounting concepts 
that we use,” says Daughtrey. 

One of the ways Harrah's measures 
the effect of its IT financial training is 
through efficiencies in its own annual IT 
budgeting process. The bottom-up data- 
gathering and development of the annual 
plan used te take two months to com- 
plete, says Daughtrey. Last year, the col- 
lection of all of the core data took one to 
two weeks. “That's the best annual plan- 
ning cycle we've ever had,” he adds. 

Moreover, by incorporating detailed 
monthly and quarterly financial reviews of 
its IT financial performance, Harrah's was 
able to bring its 2003 IT operating results 
to almost 0.4% under the approved oper- 
ating budget, says Daughtrey. 

~ Thomas Hoffman 


and senior vice president of informa- 
tion systems. “I want the objective 
evaluation of IT from finance,” he 
explains. 

Although Garrow says the com- 
pany’s 124 IT workers have improved 
their ability to accurately estimate 
project cost savings, it’s too early to 
effectively quantify their success. “We 
also need to do a better job of follow- 
ing up and measuring whether fore- 
casts have hit their targets,” he says. 
“Many times, it’s difficult to get back to 
projects you’ve implemented when 
you've got four or five projects waiting 


| to be started. There’s almost no down- 


time to give us that time to measure.” 

In the end, says Wachovia's Hartse- 
ma, financial training for IT managers 
can only go so far if you don’t have the 
right corporate culture in place to sup- 
port it. 

“You can train all day long,” she 
says, “but if [senior] management isn’t 
focused on having a culture that en- 
sures appropriate focus on financial 
management, I don’t think you can be 


successful.” @ 46832 
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Even IT Legal Work 
Is Headed Offshore 


LEGAL SERVICES for IT contracting may 
be the next function to move offshore, ac- 
cording to an attorney whose boutique 
technology law firm is engaged in setting 
up a service in India. 

“IT contracts are integrally related to IT, 
and | have found that | am preaching to the 
choir when | discuss this cost-saving initia- 
tive with ClOs who have experienced the 
benefits of offshoring,” says Larry Thomas, 
a partner at Thomas & Opp PA in Min- 
neapolis. 

Services would include a majority of the 
work involved in drawing up contracts for 
the purchase of software and hardware, as 
well as agreements for consulting, applica- 
tion service providers, software develop- 


Best Bits 


The most useful parts of recent IT 
management and business books. 
- = Heads Up: 
HF AQS ||P How to Anticipate Busi- 
=n ee has ness Surprises and 
, Seize Opportunities 
First, by Kenneth G. 
McGee (Harvard 
Business School 
Press, 2004). 


Given that the author is a Gartner Inc. 
analyst, there was a danger that this 
book would just be a marketing vehicle 
for Gartner’s well-worn spiel about 
“the real-time enterprise.” Fortunately, 
the book is deeper than that. McGee’s 
premise is that business surprises 
(such as serious revenue shortfalls) 
really shouldn't be surprises at all, be- 
cause there are always warning signs: 
information nuggets that either arrived 
too late or were ignored. McGee — ap- 
palled that companies still make strate- 
gic plans based on last year’s market- 
share numbers — envisions a world in 
which sales executives see revenue the 


moment it’s recorded and managers 
see daily profit-and-loss statements. 
Managers may rightfully worry that 
this pitch for real-time information 
will only make the current infoglut 
worse. But the book provides a 
methodology for selecting only those 
high-value information streams that 
are truly worth monitoring. McGee 
also suggests a new position of “chief 
monitoring officer,” but maybe today’s 
high-price CEOs ought to do that work 
themselves. — Mitch Betts 


Seiling to the CIO 


Everyone knows the No. | rule for sell- 
ing IT stuff is to understand the CIO’s 
problems and try to solve them — 
right? CIOs say enterprise software 
salespeople know their own products, 
but less than 15% of the sellers are rat- 
ed as excellent at understanding the 
buyer’s requirements and needs, ac- 
cording to a study by analysts at Strata- 
gem Marketing Inc. in Herndon, Va. 
Another key factor in making the 
sale is CIO confidence that the vendor 
will support the product afterward, 


ment and, yes, even outsourcing. 

Thomas plans to train Indian MBAs and 
technical workers in all aspects of IT con- 
tracting and have them do the bulk of the 
work at a fraction of the cost of a well- 
trained U.S. paralegal, with high-priced at- 
torneys merely reviewing and fine-tuning 
the work. Quality and turnaround time will 
improve, and costs can be cut by at least 
50%, compared with internal contracting 
operations, he says. 

The concept is already being tested at 
General Electric Co., where a captive com- 
pany in India has been handling various 
procurement functions, including, most 
recently, IT contracting. But GE spokesman 
Peter Stack says the process of offshoring 
IT legal work is still in the experimental 
stage, and he wouldn't comment on the 
success of the effort. 

- Kathleen Melymuka 


Stratagem says. As Eric Goldfarb, CIO 
at Atlanta-based PRG-Schultz Interna- 
tional Inc., recently put it in an online 
essay [QuickLink 44490], “Over the 
course of implementing products or 
software, something’s bound to break. 
The salesperson who stands by me 
over the years and doesn’t run away at 
the first sign of trouble is going to be 


successful.” @ 47063 


Benchmarks 
Benchmarking, in which companies com- 
pare themselves against their role mod- 
CS ul Ve Mey ORR Um ed 
Pe rceR ae Banta crsy 
process. These are the most commonly 
benchmarked functions: 

1. Information systems 

MaRS mescaline tat) 

3. Employee development/training 

Ce Unt ged 
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SOURCE: THE BENCHMARKING 
EXCHANGE, APTOS, CALIF.. MAY 2004 
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The IT Economy 

@ Canadian IT spending will grow 
3% this year, led by government 
spending, according to Forrester 
Research Inc. The slower Canadian 
economic recovery means that IT 
spending growth will lag that of the 
U.S. by one or two quarters. Canadi- 
an government spending is strong 
because of e-government initiatives 
and the replacement of antiquated 
systems, Forrester says. 

@ Spending on offshore busi- 
ness process outsourcing is ex- 
pected to reach $3 billion this year, 
a 65% increase from the 2003 total 
of $1.3 billion, according to Gartner. 


Ups & Downs 
Which software providers are 
gaining or losing a share of your 
IT spending dollars? 


Sea eas 
1. Red Hat Inc. 
2. Symantec Corp. 
3. Mercury Interactive Corp. 
4. SAP AG 
5. Microsoft Corp. 


mee) Ee) 


Computer Associates 
International Inc. 


BASE: 100 IT MANAGERS 

AT FORTUNE 1,000 COMPANIES 

SOURCE: THE GOLDMAN SACHS GROUP 
INC., NEW YORK, MAY 2004 


only 1.9% of overall U.S. retail 
spending. But online sales are 
growing faster than total sales. 


PUPA Sather 


SOURCE: U.S. DEPARTMENT OF 
COMMERCE, MAY 2004 


NOTE: Tech-Economy.org has 

discontinued the monthly IT 

confidence index previously 
published here. 
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Ask IT managers and they say: 

“Branch offices, telecommuters and mobile How can network managers meet the business 
workers create security nightmares.” demand and avoid the downside? Balance 
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sic eee mee mam The future of the enterprise. with your core network architecture. 
remote office disaster recovery solutions 


World Technology Tour Event. It's where you'll 


remote voice over IP 


workgroup collaboration and team projects 
the best of remote support options Advance Reservation by Qualified Professionals is Required for Complimentary Attendance 


WHO WILL BE THERE? Register now at www.nwfusion.com/ROS4ACW 
> Expert Event Leaders or call 1-800-643-4668 
> James E. Gaskin, Author, Columnist. Adviser 


» Toni Kistner, Managing Editor for PLATINUM PRESENTING SPONSORS: GOLD EXHIBITING SPONSOR: 
Network World 


and professionals who must implement, es \ Cisco SYSTEMS 


integrate and manage remote office networks: & , Positive Networks 
3C0OM cyclades BF cage testes 


ClOs/CSOs/CTOs 
VPs/Directors of Networking 
Network Managers 


Business Line Managers 3 ENDFORCE F,BERLINK WAN 


Smail Business Owners 


This event is limited to Network and IT professionals involved in 4 - Remote cana 
= . — 


the evaluation, purchase and implementation of remote office a 
networks. Network World Events reserves the right to determine — 
total audience and profile of complimentary 


attendees. Paid registration is also available z we : , 
To join sponsors of this premier Network World Event, please contact Andrea D'Amato at 1-508-490-6520 or adamato@nww.com for free, no-obligation information. 





Middleware is Everywhere. | Can you see it? 





MIDDLEWARE IS IBM SOFTWARE. Powerf 


tina 


1. Car notifies owner for service. 

2. Factory informed immediately. 

3. Supplier ships parts instantly. 

4. Dealer inventory adjusts in real time. 
5. Car back on road in no time. 
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AT&T to Provide 
Underwriters’ VPN 


AT&T Corp. has won a multimil- 
lion-dollar contract from Under- 
writers Laboratories Inc. for inte- 
grated networking. AT&T will pro- | 
vide an IP virtual private network 
that will serve as UL’s primary 
data channel, integrating its 
Northbrook, Ill., headquarters 
with 27 locations worldwide. 
AT&T will also provide a backup 
network to automatically reroute 
traffic in the event of a disaster. 


Guardian Extends 
Siemens Contract 


Siemens Business Services Inc. in | 
Norwalk, Conn., and The Guard- 
ian Life Insurance Co. of America 
in New York announced a perfor- 
mance-based agreement that 
extends their multimillion-dollar 
outsourcing relationship until 
2009. The on-demand outsourc- 
ing model provides IT support 
services for 5,000 employees 
and 2,800 agents. 


| 
| 


Accenture Wins 
Allmerica Project 


Allmerica Financial Corp.’s prop- 
erty and casualty insurance divi- 
sion has chosen Accenture Ltd. to | 
implement a Web-based software | 
platform to improve the efficiency | 
of the insurer’s underwriting sys- 
tems through diagnostics and 
rules-based technology. The sys- 
tem will help automate underwrit- | 
ers’ routine tasks, letting them fo- | 
cus on core activities such as im- 
proving loss and expense ratios. 


AMP, CSC Sign Deal | 
AMP Ltd., a Sydney, Australia~ | 
based financial services compa- | 
ny, has signed a three-year, $103 | 
million IT outsourcing contract 
extension with Computer Sci- 
ences Corp. in El Segundo, Calif. 
Under the agreement, CSC will 
continue to provide desktop and 
network support, mainframe 
maintenance and other services 

for AMP’s Australian operations 
through May 2007. 
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etting to Done 


’M FREQUENTLY CALLED upon to help figure 
out what to do with a project that might be in 
trouble. Of course, determining whether a proj- 
ect is in trouble is often not a trivial problem. We 
like to talk about troubled projects as if there 
were a single bit that visibly flipped from one to zero, 
but unfortunately it’s not that easy. 
While the symptoms presented vary widely, there 
are a few questions that I always ask to help determine 


whether the project is 
indeed in trouble. Some 
questions are deceptively 
simple with surprisingly 
subtle answers. Perhaps 
the most important is, 
“How will you know when 
you’re done?” 

One thing that all proj- 
ects have in common is 
that they are (or at least 
are intended to be) tempo- 
rary. They should have a 
conclusion. So theoretical- 
ly, this should be a rather 
easy question to answer, 
but it’s usually greeted 
with blank stares followed 
by one of four standard 
responses: Sa 

Response 1: “We’re done when the 


quality of the product meets our stan- | 


dards.” This is the idealistic response, 
the “we'll sell no wine before its 
time” approach. 

Response 2: “We’re done when the 
product fulfills the requirements.” 
This is the legalistic response, the 
“we’re done when we’ve completed 
the minimum required by the letter 
of the law” approach. 

Response 3: “We’re done when we 
reach the schedule deadline.” This 
is the schedule-driven, pragmatic 
response, the “we're taking it to the 
trade show whether it’s ready or not” 
approach. 

Response 4: “We’re done when 
we run out of money.” This is the 





budget-driven response, 
the “our CFO won't give 
us any more money, so 
we'd better just roll it out” 
approach. 

Unfortunately, none of 
these responses captures 
the subtle reality of IT 
work. We don’t have a 
simple answer to the 
“What does ‘done’ mean?” 
question. We don’t have a 
physical product with 
physical properties. It’s 
considerably easier to dis- 
cern when a bridge is 
done. Does it span the 
gorge? Is it painted? Will it 
withstand the traffic we 
anticipate for it? 

For IT projects, there’s only one 
real way to tell when a system is truly 
done. That’s when all the stakehold- 
ers in the system agree that it’s done. 
Each group must certify that the proj- 


| ect sufficiently addresses its con- 
| cerns. Among other criteria, they 
| must agree that the project meets 


enough of the requirements, is ready 
when necessary, is deployable, is sup- 
portable and will be accepted by the 
users. In short, in the absence of 
physical evidence of completion, 
“done” is fundamentally a political 
decision, not a technical one. 

A different yet related deceptively 
simple question is, “Do you think that 
the team has the skills to complete 
this project?” This one is usually 





answered with a list of the technical 


| skills of the team members. 


Of course, technical skills are im- 


portant for getting to done, but clear- 
| ly they’re not sufficient if we under- 


stand that “done” is defined political- 


| ly, not technically. There are other 


equally important skills for building 
the consensus required for success. 
They include the following: 

Listening. Do the team members 
have the ability to listen carefully for 
both technical and business require- 
ments? Can they hear both the issues 
and the feelings that surround those 
issues? Can they confirm what they 
hear to ensure that they haven’t mis- 
understood? 

Identifying interests. Do the team 
members have the ability not only to 
hear what the stakeholders are say- 


| ing, but also to anticipate and inter- 


pret their interests? Can they under- 
stand what may be driving the re- 
quests and demands that they hear? 
Managing constructive conflict. Does 
the group have the ability to engage 
in the constructive conflict required 


| for building consensus? Can it deal 
| with the conflicting demands of 


stakeholders? Can it reconcile the 
emotional needs of stakeholders? 
Negotiating trade-offs. And finally, can 


| the team manage the negotiating 


process required to build consensus? 
IT projects are now the gridiron on 
which corporate politics are played. 
As systems become integral to busi- 
ness processes, turf battles may be 
negotiated during the requirements 
and acceptance phases of projects. 
So when you contemplate your 

next project, consider not just the 
launch of the project, but how the 
team will get to “done.” When you 


| think about the end first, you’ve got 


a better chance of getting there. 
@ 46978 


WANT OUR OPINION? 


For more columns and links to our archives, go to 
www.computerworld.com/opinions 





Got Questions About 
Network Consolidation? 


Computerworld’s IT Executive Summit Has the Answers 


If you’re an IT executive* in an end-user 
organization, apply to attend Computerworld’s 
upcoming complimentary half-day summit 
on 


ClOs and senior IT executives are finding that 
consolidating high-performance networks can 
play a key role in improving business applica- 
tion performance while significantly reducing 
operational costs. 


The proliferation of network capacity and relat- 
ed storage and server infrastructure presents a 
daunting challenge for today’s enterprises, 
many of which are positioning themselves for 
growth yet still seeking to reduce IT costs 
where feasible. 


By leveraging the knowledge of industry 
experts and the real-world experience and 
advice of your IT peers, this IT Executive 
Summit will provide an overview of effective 
strategies for consolidating and connecting 
networks and data center applications. 
*Complimentary registration is restricted to 


qualified IT executives only. 


Apply for registration today 
For more information or to apply, visit 


Streamlining Networks and Data Centers: 
The Business Benefits of Consolidation 


5 


» 


Maryfran Johnson 


Rebuilding the IT Foundation 


Infrastructure Makeover: Moving the 
U.S. Air Force Toward Network-Centric 
Services Delivery 


User Case Study 


Rafrachment and Networkino Rr 


CG INE 


Customer Challenges and Solutions: 

Real-Life Scenarios Connecting Data Pr 

Centers Over Distance Steve Adolph 
CIENA 

Network Consolidation and the Data 

Center: Boosting Business Performance 

and Application Availability 


Strategies for Streamlining Key 


IT Resources Richard Villars 


Vice President, 
Storage Systems 


IDC 


Exclusively sponsored by 


2. | COMPUTERWORLD 
“S| TT EXECUTIVE SUMMIT 


NETWORK CONSOLIDATION 
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Get Rid of the PC Box. 
Save Space. 


As an I.T. Manager, your greatest challenge could 

The PC Box be where to put that big PC BOX! Cybernet has 
created an innovative, all-in-one, Zero-Footprint-PC. 
The entire PC fits inside a normal size keyboard! 
This design has helped many businesses nationwide 
to save valuable space. 


STANDARD FEATURES: 

¢ Intel® Pentium® 4 Processor up to 2.80GHz/533 FSB 

* 128MB DDR333 SDRAM up to 2GB 

* 40GB IDE 7200 RPM hard drive, up to any size 

* 10/100 Ethernet, 4 USB 2.0, 2 IEEE1394 Firewire, 2 Serial Ports 
¢ 2-Year Limited Warranty 

All these features are inside the keyboard! 


...or Not 


An entire PC inside a keyboard 


OPTIONS: * 
Internal slim CDRW/DVD » Internal floppy * Internal fax modem * DVi (Digital Video) As low as 


Parallel Port ¢ TV-Out (NTSC/PAL) ¢ Plastic Skin Protector * LCD Displays: 15", 17", 
18" and 19" (touch screen available) * Wireless 802.11b/g available 


Runs all Microsoft™ Windows 98/2K/XP/NT operating systems. ; : ‘ais 
U. S. Patent Pending. © 2004, Cybernet Manufacturing, Inc. all rights reserved. The CYB eE R MN = i 
Cybernet logo and Zero-Footprint-PC are trademarks of Cybernet Manufacturing, Inc. Space Saving Technology — [S33 
Intel, Intel Inside, Pentium, Celeron are trademarks, or registered trademarks of Intel 

Corporation, or its subsidiaries in the United States and other countries. All other regis- 


tered trademarks are property of their respective owners. Prices and specifications are For product and model options visit us at: www. bernetman.com 
Specs 1 


bject han ith ice. All pri ludi d shipping. *Monitor 
a ee ne or ca: TOLL FREE 888-834-4577 international 949-477-0300 
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Advertising Supplement 


Laer Mole aS 


IT Careers: ClOs Share Career Tips for Women 


o three careers in the information technology 

erent are the same. However, when discussing 

how to build an IT career, three IT leaders share a common 
belief: Women must be willing to take the risky projects. 


Barbara Cooper, ClO for Toyota America; Ann M. Harten 
SVP and CiO for SIRVA; and Jane Fishkin, ClO for the 
Brookings Institution, are members of the newly formed 
ClO Executive Council — a group that is studying the future 
of technology and how to move forward in an increasingly 
complex technological world. All three have found some 
common themes in building careers: willingness to take on 
projects that seem “out there” at the time, being 
surrounded by bright people, and understanding that 
choices will have to be made. 


Senior Operations Engineer 
wanted to be responsible for the 
specification, installation & con- 
figuration of revenue gener 
value-added products wiin 

N. Amer. operator networks: 

vide expert, remote & 

tech. support for all company 
products across all mobile tech- 
nologies, incl. TDMA, COMA 
GSM/DCS, resolving any i: 
which may o 

lated tech. issues to 
acceptance w/in scheduled 
timeframes & work proactively to 
ensure that all live s 5 
kept up-to-da 

ruption to s 

track hardwa 

lems & escalat 

depts. & 3rd party v 

face as first line of support for 
third party products, e.g. Oracle. 
Ingres databases, |S 
gateway servers, IVR & SM 
interface: d party prepaid 
platforn tain extensive 
knowledge in n HP SS7 Opencall 
Protocol, software & hardware 


v 
Cobobers, 


Woxrtp's Foremost OuTFITTER 


lead a team of Engs. & maintain 
ownership of several customer 
accts ensuring all support 
issues are resolved w/in agreed 
Service Lev agreements 
review all call resolution reports 
prior to delivery to customer & all 
methods of procedur 

are implemented at cus 

site; interfaces with Product 
Ctrs. providing advice on design 
& integration of new products 
take lead in learning new prod- 
ucts & introducing such products 
to the region; act as mentor & 
tech. advisor to other Oper 
Engs.; provide 24 x 7 tech. esca- 
lation support to customers & 
Oper. Engs. w/in the co. support 
framework. Must have Bach 
Deg. in Comp. Sci., Elect. Eng 
or related field, & 2 yrs. software 
tech. support exper. incl. exper. 
troubleshooting HP/Unix oper. 
systems & Oracle 8i databases. 
& incl. exper. with wireless tech- 
nologies & prepaid excel switch- 
es. 40/hriwk. Salary $65,000 - 
70,000/yr. Send 2 resumes to 
Case#200300055, Division of 
Career Services, 19 Staniford 
St., 1st Fl., Boston, MA 02114 


CWO060704E/W/MW.1 


ollowing. op portunity ‘avai I able to > 
work in our Moraga, CA office: 


Systems Analysts 


Positions require a Bachelor's 
degree or valent in Com- 
puter Science or related field 
and at least one year experience 
with large scale government 

- ideally IRIS and RDC 


ural a d may include 

Visual Basic, XML V 

and Oracle. Must be available to 
travel 


Please send resume to 
interskills LLC with cover letter 
to Tony McKenz ie, 879 Au ! 


(925) 377- 

your resume to 

@inskills.com. For addi- 

tional information on the com- 

pany visit our web site at 

www.inskills.com. Interskills LLC 

is an affirmative action/equal 

opportunity employer committed 

to the development of a diverse 
workforce 
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"You have to know that you will take the opportunity when 
it presents itself,” Cooper says. “It may mean moving, 
taking an overseas assignment or taking on an area you 
may not know a lot about. That has always been more of a 
challenge for women who have families or who have a 
working spouse.” 


Fishkin, who chose public sector over commercial when she 
left IBM for Brookings, says it’s also important to know and 
accept your own approach to careers. “There are those who 
plan their careers and know what steps they want to take 
next. There are others who don’t plan — they do what they 
like and go where they're needed.” Fishkin is the latter but 
says the end result looks as though she planned it. An 
economist by education, she began with punch cards and 
Is and Os at IBM. After moving to Brookings, she was 
immersed in conversations about the ethics of the Internet 
and e-commerce — more than two decades ago. 


The three ClOs identify common skills they look for in 
preparing IT leaders of tomorrow 


© The ability to vroaden experiences. 


© A mix between technical and 
business/institutional assignments 


© The ability to influence others. 
e The personality to be an aggressive learner. 


“My advice is to broaden your experiences and stay away 
from pigeon holing. If you're provided an opportunity to 
work on the business side, grab it. Step outside your 
comfort zone, " Harten expiains. 
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COMPETIT 


"DIVERSITY IN PRODUCTS, SE 


THE SOCIAL SECURITY ADM 
is seeking highly motivated IT Professionals for the following types of positions 


IVE SALARIES - 


Fishkin says, “I've hired a lot of people who didn’t have the 
exact skill or competency that was needed for the job. | 
really about their attitude and their ability to learn ‘witty 
that they're not afraid to volunteer to take on something 
new.” And, according to Cooper, communication “is as 
important as knowing any technology. It doesn’t matter if 
you're better at Java or Dot-Net if you can’t 
others, negotiate and drive change.” 


nfluence 


Once women reach leadership positions, continued learning 
is critical, they say. Cooper's greatest challenge is preparing 
people to manage 
world — 


and lead an ever more challenging IT 
studying, projecting and then linking technology to 
people. Harten relies on extensive networking to enrich 
herself personally, but also to bring value to her c 
“Through these relationships, I’ve been able to 
For Fishkin, 
future is continuing to find ways for technology to enable 
the business, government and education experts she 
supports — with far-flung projects that carefully examine 
the future, using technology that 
running today 


company 
refine my 


thinking and avoid pitfalls.” the juice of the 


needs to be up and 
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Mainframe Developers (COBOL, CICS 

Internet Developers (Java, WebSphere, CG 
Database Administrators 
Systems Operation Analysts (SUN/UNIX, JCL 


(DB2, IDMS, Oracle 


SO/ISPF, z/OS, Control 


NG TEAM! 


JOIN OUR WINNII 


- RANGE: $52,963-$85,867 


A COMPREHENSIVE BENEFITS PACKAGE INCLUDING 


e RETIREMENT 
¢ HEALTH, LIFE AND LONG TERM INSURANCE 
PAID VACATION, SICK LEAVE AND 10 PAID HOLIDAYS 

PAID OVERTIME AND ONGOING TECHNICAL TRAINING 
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ILLINOIS DEPARTMENT OF 
EMPLOYMENT SECURITY 

401 South State Street - 7 North 
Chicago, IL 60605 

Attention: Joanne Breaux 
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PA 19144 


Senior iSeries Systems Eng- 
ineers - Requires Bachelor's or 
equivalent in Computer Science 
or a related field & five years 
experience in the job offered 
&/or in Computer Information 
Systems/Technology with 3 
years of the experience being in 
Systems Engineering. In lieu of 
the BS+5 yrs, Employer will 
accept 8 years of experience in 
Computer information Systems 
Technology, with 3 years of the 
experience being in Systems 
Engineering. A minimum of 18 
months of TCP/IP & SNA com- 
munications on the iSeries is 
essential. Must have the follow- 
ng certifications: IBM LPAR 
Expert & iSeries Technical Solu 
tions Expert, IBM iSeries Tech 
nical Solutions Design V5R2 & 
iSeries.IBM Technical Solutions 
implementation V5R2, MIMIX 
V4R4_ Networking 


Competitive Salary & Benefits 
ontact: Recruiting, Prer 
c, 4904 Creekside Drive 
Clearwater, FL 33760, Robert 


Nowels@premiseinc.com 


CyberSoft Technologies 
Inc., Systems Analysts 
Design, and develop enter- 
prise level web-based 
applications using C# 
}ASP.Net, SQL Server 
UML, Visio, VSS, COM 
DCOM, Message Queues 
and Transaction Server. 
Need degree in Comp or 
Engi + 2 year Exp Resume 
to: HR, 4420 FM 1960 
West, Suite 222, Houston 
TX 77068 or via email 
jobs@cybersoftech.com 
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Software E 
computer f business 
racie, Oracle 
Financials, SAS tools, Apache & 
SQL, as well as testing tools inci 
WinRunner, Test Director & Astra 
Quick Test on Linux, HP UX & 
UNIX platforms. Install & set up 
Rational Unified Process in s/ware 
dvipmt life cycle. Create & exe- 
cute testing scripts using C & VB 
Set up & configure Load Runner 
to perform smoke, bounce, stress. 
integration, architecture & func- 
tionality specific performance 
monitoring of web applics. Dvip 
test result summary report based 
on mean, median & stat'al analy- 
sis of test ults using Rational 
Robot. Dvip test strategies, test 
plans & qity assurance sched for 
all tests to be performed. Req BS 
n Comp Sci 
or closely related field w/2 yrs exp 
n job offd or as QA/Systems 


Extensive trave’ n 


gnment to ient sites 
wiin US reqd etitive salary 
offd. Send r je to Ahn Ch 
Yong J 3 Technology 
Solutions, Ir 2526 Mt. Vernor 
Rd, Ste 8 Dunwoody, GA 
30338; Attn: Job JS 


AVI Technologies, Inc. 


Programmer Analysts: Ana- 
lyze, architect, develop, inte- 
grate and Test Multi-Tier 
Enterprise Application using 
VB.NET, XML, Web Services 
C++, UML, Rational Rose 
J2EE, and EAI technologies 
using database in Oracle 
Sybase and SQL Server. 
Requires a Bachelor's in 
Computer Science or related 
field and 2 years of experi- 
ence. Send Resume to: HR, 24 
May Street, West Haven, CT 
06516 or E-mail: jobs@avit.net 


Computerworld + InfoWorld * Network World * June 7, 2004 


SENIOR SOFTWARE ENGI- 
NEER: Duties include: As the 
technical lead will direct the 
rese h, design, and develop 


computer software systems f 


olor management systems for 
the graph arts industry. Res- 
ponsibilities include r 


"8 an 





experience 
years experien 
upation 5 Jevelor 

or related. MUST possess der 
onstrated expertise: (1) Math 
ematical modeling; numerical 
methods fc 
extrapolation of linear and non 
near data behavior, systems 
linear equations; (2) Funda 
mental optics principles, inclu 
ing electromagnetic theory 
light propagation, black body 
radiation, geometrical optics and 


optics of the human eye; spe: 


nterpolation and 


f 


al analysis; and (3) OO design 
architecture; multithreaded 


application 


Labor Certif 
Staniford St, 1s Boston, MA 
02114 


Systems Test Consultant 
Responsible for the analysis of 
requirements and design of 
applications and software to 
ensure appropriate test plan and 
test case development. Engage 
in project management testing 
and full development efforts 
Work with vendors to monitor 
and report on quality issues. 
Monitor, analyze, and report on 
multiple projects, ensuring com- 
pliance with company project 
standards. Requirements: Bach 
elor’s degree in Computer Sci 
ence or Information Systems 
and two years’ experience in job 
offered or in Information Tech- 
nology Testing. Experience must 
include: 18 months IT testing of 
accounts receivable and general 
ledger applications for docu 
mentation, and requirements 
analysis consisting of six 
months of SEICMMI methodolo 
gy. Salary: $70,066/year. Work 
hours: 8 am to 5 pm, M-F. Send 
resume to Dawn at fax number 
252-246-4649 


Senior Engineer (Portland, OR) 
Develop & implement introspec 
tive & self-adaptive hardware & 
software sys. Design, imple- 
ment, & evaluate new program 
representations. Consult wi 
teams & clients to enhance reli- 
ability, scalability & performance 
of advanced computer system 
Supervise project team & engi- 
neers to devise solutions. Min 
req's: Ph.D. in Comp. Sci. or 
Elec. Eng. Plus 1 yr. specialized 
experience. Send resume to 
Melanie Peters, Business Man- 
ager, Reservoir Labs, Inc., 632 
Broadway, Suite 803, New York 
NY 10012 
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Technical Support Anatyst 


Experience: Minimum 3 years 
ecent experience in a similar 


position 


pening for a 
al Support Analyst based 
Illinois. The selected 
ave a minimum 

s degree in E 


Managem 





rating 
arf 
e Sut and nfigure 
TCP/IP and computer networks 
Require prior work experience 
working on Windows, win- 
dows2000 server, Windows 
2000 advanced server, Linux, 
Novell platform. routers, gate- 
ways, LANS/WANS and fire 
walls. Responsible for in-house 
systems administration, network 
management, e manage 
ment, LAN, VPN, remote access 
management and providing for 


1-house u and external 


rm 


Seeking qualified applicants 
for the following positions in 
Memphis, TN: Senior Busin- 
ess Systems Analyst. Develop 
major applications systems 
requirements, testing and con- 
trols. Requirements: Bachel- 
ors degree or equivalent* in 
business, computer science. 
engineering mathematics, 
MIS or related field, plus 5 
years of experience in sys- 
tems planning and design or 
systems development and 
integration. Experience with 
Oracle, PL/SQL and applica- 
tion design and testing also 
required. “Master's degree in 
appropriate field will offset 2 
years of general experience 
Submit resumes to Chris 
Gibney, Federal Express 
Corporation, 3680 Hacks 
Cross Road, Bidg H 2nd Floor, 
Memphis, TN 38125. EOE 
MIF/DIV. 


mPower Software Services has 
mult. openings avail. for IT Pro- 
fessionals and Consultants. Dut- 
ies will include but will not be 
limited to developing and de- 
signing s/w systems using vari- 
ous h/w, o/s tools, software 
packages and languages; devel- 
oping clienUserver, mainframe 
midrange, ERP & web applica 
tions. A degree is required. We 
will accept foreign equiv. of the 
required educ. and/or its equiv. 
in edu. and experience. Opening 
also available for Business 
Analyst to work with software 
professionals to identify alterna- 
tives and solutions, evaluate 
business requests for feasibility. 
Competitive salaries offered 
Apply to 
recruiting@mpowerss.com or 
mPower Software Services 
17295 Chesterfield Airport Rd 
Suite 241, Chesterfield, MO 
63005. 





enterprise integration 
network vulnerabilities 
corporate data security 
government compliance 
mobile & wireless security 


business management needs 


The right IT professional 
can jump the hurdles of 
today’s IT challenges. 


Call: 


(800) 762-2977 
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Computer Software Developer 


& PHP witt 
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Master's 
h 2 years 
to HR Dept, 
Accurate Environmental Fore- 
casting, Inc., 165 Dean 
Knauss Drive, Narragansett, 
Ri 02882 
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Want a new SOFTWARE ENGINEER 


T career? 


for Software Develop- 
ment Company. Mini- 
Check out our jobs mum 3 years of experi- 
; ence and M.E. Send 
in the combined 

resume to: Alyzak Corp- 
CareerJournal.com oration, 1580 Sawgrass 
Corporate Pkwy, Suite 
database. 130, Sunrise, Fl 33323 


www.itcareers.com No walks in please 


Where The Best 
Get Better! 


www.itcareers:.com 


Symphony Corp., head- 
quartered in Madison, WI 
seeking candidates for 
mid & senior level posi- 
tions: Software Engin- 
eers, Programmer Ana- 
lysts, Project Managers 
and Quality Assurance 
Technicians Forward 
resume, referenc & 
salary requirements to 
Symphony, HR Dept 
608-294-9321 or email to 
info@symphony.cc 


SalesPage 

looking for 

Specialist, P’ 

perform triage to 

issues and to dev 

system using Java, JavaS 

SQL, Relational databe 

requirement is BS de 
perience. App 


it@salespage 


Owen State Commun 

has opening for Dat 
ministrator to analyz 
implement operating 

security software t 

College informatio 2 
Require BS plus exp. in Oracle 
DBA, Perl, SQL, Java. Please 
apply at lfern@owens.edu 
EOE 
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design 
Windows NT ) 
Visual Basic, ASP, HTML, APIs 
OLTP, OLAP, Versata, PVCS 
Application 


The MathWorks 


The MathWorks 


Genetic Algorithm Toolbox Developer 
Simulink Engine Quality Engineer 


DSP Simulink Blockset Engineer 
Senior GUIDE Engineer 


The aforementioned positions are available at 
all levels and require a minimum of a B.S., M.S., 
or Ph.D. and 0-8 years of experience. 


Additional Opportunities in the Following Areas: 

Sales Representatives 

* International Sales Reporting Analyst 

* Business Model Analyst 

* Business Application Managers 

* Data Warehouse Architect-Business Intelligence 
DSP/Communications Quality Engineer 
Real Time Embedded Coder Quality Engineer 
Product Marketing Manager 
Software Engineers 


Developers of MATLAB 


For fastest consideration interested candida 
should reply via our website 
http://www.mathworks.com/jobs 

The MathWorks, Three Apple Hilt Dr 

Natick, MA 01760 - Job Code: IT604 


www.mathworks.com 


Computer Professionals 
(Multiple Openings) 
Software Engineer/Systems 
Analyst/Programmer 
AnalysUDBA 
Springfield, IL 


Computer Developer fo 
Boca Raton firm. Must 
have Bachelor's Degree or 
equivalent & 1 year experi- 
ence with c 

supporting 


cations b 
Access/VB 

experience with real e 
software applications 
Access, VB 6 and Oracie 
DB. Please respond to 
Moshe Marty Harel 

W. Palmetto Park Road 
Boca Raton 





APLEMENTA- 








Services has 
Financial Analyst 
but will not be 
financial 
operating 

2 financial and 
estimate future 


expenditures. A 


d experience. 
salaries offered 
@mpowerss.com or 
ftware Services 
Chesterfield Airport Rd 
Chesterfield, MO 


Systems Analyst: Analyzes 
user requirements, procedures 
and problems to automate pro- 
cessing or to upgrade existing 
computer system. Bachelor's 
degree in Computer Science 
Engineering or math related 
and 2 yrs exp. in job offered 
required uded in those 2yrs 
must have 2 yrs exp. with C 
programming languages 

4 2 yrs. exp. UNIX, MSDOS 

g erating sys- 

to travel 
$90,000/yr. Apply by resume 
only, to HR Dept, Time To 
Market, Inc., 560 S Winchester 
Boulevard, Suite 304, San 
Jose, CA - 95128. (3 positions) 


Must be able 


Meee kee es 


WARE ENGINEER: Using 
technologies, design and 
software application 
retail price manage- 
urchas 

n and 
writing 
us 
cluding 
scalability 

and =XML 


Master's D 


Labor Certificatior 
) Staniford Street, 1st Fl 


MA 02114 


Morrisett Associates is the own 
f www.midwestcyber.com 

look for web/system devel 
developmen 

3 ASP (VBScript and Java 
Candidate must have 
using ASP, 


Piease con- 


nidwestcyber 


develop 
Ss using Oracle. 
DB2, VB, Unix 
Qualified applicants 
must have MS/BS or equivalent 
with experience in the IT field 
Contact iKnowvate Technolo: 
gies at info@iknowvate.com 
EOE 


ShellSoft seeks IT professionals 
ogrammer/system analysts 
ftware engineers), project 
gineers using Oracle, SAP, 

SQL, Java, C/C++. Minimum 
requirement is MS/BS with IT 
experience. Some positions 
require travel. Please send 
resume to jobs@shelisoftinc 
com. EOE 


Emergtech is looking for IT pro: 
fessionals to design software 
and computer systems to meet 
project requirements. Candi- 
dates must have BS/MS degree 
plus experience in the computer 
field. We are small but stable 
Travel maybe required. Please 

resumes to job@emerg 

hinc.com. EOE 


Software Engineer. Develops 

1 maintains software algo- 
rithms for Image Analysis. 
Pattern Recognition, Decision 
Making and other related inteili- 
gent processes. Performs sys- 
tem level object-oriented pro- 
gramming under Microsoft 
Windows XP and develops 
application software for the com- 
pany's X-ray inspection sys- 
tems. Require a master degree 
nm computer science or a related 
field plus 2 yr. exp. on job 
offered or 2 yr. exp. in a related 
field. Apply to: YesTech, Inc 
1221 Puerta Del Sol, Suite 500. 
San Clemente, CA 92673. Attn 


Owen Sit 


Quality Control 
Informatics Specialist IV 


Boehringer Ingelheim Vetm 

ca has an immediate c 

ing in its Elwood, Kansas facility 
for the position of Quality C 
trol Informatics Specialist IV 


Responsible for supporting the 
Company's manufacturing, R&D 
and technical services through 
quality control and troubleshoot 
ng analytical methodology (wet 
chemistry, chromatography and 
spectroscopy), and for designing 
storage, retrieval, sharing and 
optimal use of manufé 
release information and data 


ist possess a master's de 
n Compute 


field 


equivalent 
ence or a relat 


j an 
ree or equivalen 


jramming wit 

VBA, database s 
Oracle and MS ac 
dows operating syst 
ng 2000 server, and 
working and informat 


S required 


Resume and/or cover 


must reflect each require: 
above and specif 


code AD-GCD/GC02 


be rejected 


Forward resume tc 
Center, PO Box 534 
MA 02454 


Software Engineers needed 
Seeking qual. candidates pos 
sessing MS or equiv. and/or rel 
work exp. Part req. exp. must 
includ 2 yr working w/ Java 
Exp. working in healthcare 
industry preferred. Duties in- 
clude: Design, develop, test & 
debug software; Analyze & 
define customer req., Deploy 
debug applications on various 
sstomer location. Program 
code using Java & Oracle on 
MS Windows Platforms. Send 
res. ref. & sal. req. to Arrendale 
Associates, 20484 G Chartwell 
Center Dr., Cornelius, NC 
28031 


Applications Engineers needed 
for our Livermore, CA office 
Seeking qual. candidates pos 
sessing MS or equiv. in Comp 
Sci. or related field, and/or rel 
work exp. Part of the req. rel 
work exp. must include 1 yr 
working w/ Oracie & ColdFus- 
ion. Duties include: Develop 
design & code web applications. 
Analyze & design databases. 
Administer ColdFusion applica- 
tions & web services. Work w. 
Oracle, ColdFusion, PL/SQL, & 
Java. Send res., ref. & sal. req 
to itradenetwork, Inc. at hr@ 
itradenetwork.com. No Phone 
Calls. 


Systems Analyst/ASIC Designer /CAD 
Engineer: Analyzes user requirements, 
procedures and problems to automate 
processing or to upgrade existing com- 
puter system. Bachelors degree in 
Computer Science, Engin-eering or 
math related and 2 yrs of exp in job 
offered required. Included in those 2 
y's must have 2 yrs experience with C, 
C++ programming languages. Should 
be able to do RTL coding, timing analy- 
sis, formal verification, ATPG intemal 
scan, spice simulations, package de- 
Signing for a chip and 2 yrs experience 
with UNIX, MSDOS and Windows95/ 
98/NT operating systems. Must be 
able to travel. $90,000/yr. Apply by 
resume only to HR Dept, Time To 
Market, inc., 560 S Winchest-er 
Boulevard, suite 304, San Jose, CA 

95128. (1 position). 


aKecbacteesReceyed) 


WE DO 


BETTER JOB 
el 
FLEL PING Y OU 
ee Oe ee 


SEARCH FOR JOBS 
AND POST 
YOUR RESUME ON 
ITCAREERS.COM 


OR CALL 
800) 762-2977 


Computerworld + InfoWorld * Network World * June 7, 2004 








PROGRAMMER/ANALYST 
analyze, design, devel 
tain, test and support enterprise 
application software in tient 
server environment using Java 
J2EE, EJB, XML, XSLT, JMX 
Oracle, Eclipse, L 
UML, Jboss and 
under Linux, UNIX é 
operating syste 
B.S. degree 
ence, an Engineering 

sely related 

n the 


ent sites withir 


required. Competitive 


ffered. Apply by resume 
to: Ravi Kandimalla, Everest 
Computers Ir F 
well Road, Ste 

GA 30076; Attn 


E-Business Application Devel 
yper (Programer/Analyst): Ana 
lyze, design ode mplement 
and support customized applica 
tions using Visual C++, COM 
Active Server Pages, HTML 
Visual Basic, MS SQL Server, 
MS Transaction Server, Wind 
ows NT, Datacom, XML Scripts 
File’ Panagon 3.1 Imaging 
System. Must have Bachelors or 
equivalent in Computer Science 
information Science, Math, En- 
gineering/Physics or related 
field. Must have 1 yr exp. in job 
offered or software develo 
ment. Such experience must 
include C++, COM, XML Scripts 
MS SQL Server, MS Transaction 
Server and Visual Basic. Salary 
$64 ,000/yr Hrs 40hr/wk 
8:00am-5:00pm. Please send 2 
copies of resume to se 
#200204360, Division of Career 
Services, Labor Certification 
Unit, 19 Staniford St., 1Fi 
Boston, MA 02114 


if 


e651 PUES 


aetna uReeen 


arammer/Analyst 
Jesign and imple 
jatabase applicatic 
Responsible for installation 
and 


and ent 


MindTree 

lished and expanding |! 
ng company 
realization services 
infrastructure and c 


T consult- 


dors, is searching for qualified 

b ess development 

agers to join its 
Responsibilities include devel- 
oping and managing all busi. 
ness development initiatives for 
a region in the United States 
Qualified applicants will have a 
technical and/o marketing 
Jegree and at least five years of) 
relevant industry experience as 
an IT marketing executive/man- 
ager.Positions may require relo- 
cation to various client sites 
throughout the United States 
Qualified applicants submit 
resumes to HR Department, The 
Tower at 270 Davidson Avenue 
Suite 305, Somerset, NJ 08873 


www.itcareers.com 
is the place where your 


fellow readers are 


getting a jump on even more 


of the world's best jobs. 


Now combined with 


CareerJournal.com, 


you have more jobs to 


choose from. 


Stop in for a visit and 


see for yourself at: 
www.itcareers.com 





Sr. Programmer Analysts 


Resp 
tion of Oracle 
integration us 
tation methodc 
clients on curre 
future state 
design validation 
spec. develop. WV 
ers to desig 
ponents using PL 
develop & exec 
end user trair 
methodology & 
is to conform t 
of Oracle 
ment & 


ed field & 
offe r 3 
Software Eng 
accept any 


exp. mt 

menting Oracle appls 

exp. using PL/SQL. Mai 
sume (no calls) Michelle 
Ramirez, Answerthir 

1001 Brickell Bay 

3000, Miami, FL 3313 


Software Programmer 


Requirement analysis. 

development, te 

mentation of commer 

ness application systerr 

have demonstrated at 

Object Oriented D 

Development using V 

MFC, Active X, Visual 

using MS Access QL Server 

Database; and working ir 

Windows NT/9 

ment. Must have k 

maging formats & 

ability to use imaging tools 

develop applications; < 

edge of scanner interfacing 

standards. Require 2 years 

experience in job offered or 2 

years experience as a Software 

Developer. Bachelors’ degree in 

Computer Science or related 
Salary. is $61,000/yr. 

9:00 to 6:00 Send 

two copies of resume to Case # 

200300035, Division of Career 

Services, Labor Certification 

Unit, 19 Staniford St, 1s! 

Boston, MA 02114 


d knowl- 


PROGRAMMER 
PinnacleSoft 

openings 

Analysts w/at 

job offd or 

Analyze, dsgn, dvip 

& impimt client server applics 
using .NET, VB/C#, S Server, 
iS, ASP, COM/DCOM, Seagate 
Info., & Oracle on Win platform 
Regs: Bach in Engg or Sci 

Pay & Bnfts. Mail res 
w/proof of work status 

Dept. Ref #0504, PINNACLE- 
SOFT, INC., 3371 Brunswick 
Pike, PMB #302/141, Lawren 
ceville, NJ 08648 


Computerworld « 


IT|Careers 


available for a VLM 
>velopment Engineer 


based soft 


Engage 
jomation/busir 
pharmaceutic 
& lead 2-8 eng 
A software 
ndows NT. 
develop & maintain tools & 
relational databases. W 
tain systerr 
accordinc FDA 
develop % OQ 
Extended consult, 
tomer sites throughout th 
will be required 
quirements are: Master's degree 
m computer science or a ated 
field. No experience requirec 
Must possess ng knowl- 
f C, C++ and/or Visual 
ability to work with 
n Unix and NT operat- 
systems; ar 
ork with relation 
Must hi 
rization 
9:00 a.m 
er week 
72,000 4 2 
opies oO e Case No 
Career 


ation 


Senior Software Engineers 


Producer of electronic databas 
es for libraries seeks engineers 
for work in Ipswich, MA. Will de- 
sign and develop proprietary 
search and retrieval technology 
and software systems, specifi- 
cally multithreaded applicati 
on Windows, Unix and Linux 
platforms. Required: At least 3 
years experience; Bachelors de- 
gree in computer science or 
equivalent; Good command of 
C/C++ and STL; Experience in 
development of multithreaded 
server applications Proven 
track of dev ment for multiple 
software platforms (Windows 
UNIX, Linux); Experience with 
ndexing and searching technol- 
ogy based on inverted indices. 
r i OO design 
and development paradigm 
Working knowledge of XML 
lated technologies (DOM 
XSLT); Strong analyt 
problem solving skills. Important 
assets: Working knowledge of 
Z39.50 protocol and ASN.1; Un- 
derstanding query languages 
Experience with parsing tools, in 
particular iex and yacc; Experi 
ence with Unicode. 
Apply to: EBSCO Publishing, 
jobs@epnet.com. E.0.E 


‘on 
{ 


June 7, 2004 


Prosoft 


PROSOFT 
GROUP, INC 


TECHNOLOGY 


EAI/B2B Integration 
webMethods (Integration 
Server, Broker, Mainframe 
Integration Server, WorkFlow) 


SAP R/3 Functional Modules 
ABAP/4, Basis, BW, EBP/SRM 
APO, SEM, CRM, SAP 
Business One, SAP Portals and 
SAP Net Weaver 


J2EE Technologies, Web Logic 
Web Sphere and iPlanet, XML 
Web services frame work 
(SOAP), WSDL, UDDI. 
Microsoft .Net or SeeBeyond 
5.x 


Peoplesoft and Oracle - 
Applications 

Database Administration 
Oracle and SQL 

Enterprise Reporting- Actuate 
Crystal Reports and Data 
Warehousing 


Visit our website at 
www.prosoftgroup.com 


applicat 
process comm 
and develop Grapt 


for software 


Salary 
Send 2c 


A 34 year record of q 


ple like you We know yot 
demand 


environmen 


sot a 
J 


y recruitin 


please 


t www.ajilor 


AJILON CONSULTING 
An Equal Opportunity Employer 





relocate if 


Attn: Drey Ar 


719-2564 or Email 


drey.antho: 


y@rsi 
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@STAKE INC 

ABN AMRO HOLDING NV 

ACCENTURE LTD. 

AIRBUS SAS 

ALCOA INC. 

ALLIANCE DATA SYSTEMS INC 

ALLMERICA FINANCIAL CORP. 

AMP LTC 

AMR RESEARCH INC 

ARC ADVISORY GROUP INC. 

AT&T CORP 

AUTOMATIC DATA PROCESSING INC. 

BAAN 

BAE SYSTEMS 

BAYSTAR CAPITAL LP 

BEA SYSTEMS INC 

BIZRATE.COM 

BUDGET RENT A CAR SYSTEM INC 

CAELO SOFTWARE INC 

CALPINE CORP 

CANADIAN PACIFIC RAILWAY LTD. 
CARDINAL HEALTH INC 

CAREGROUP INC 

CARNEGIE MELLON UNIVERSITY 33,4 
ASE WESTERN RESERVE UNIVERSITY 

INGEPO! ORP. 


OLLABORATIVE 
DMF +SSOCIATES 
INTERNATIONAL INC 


MPUTER SCIENCES 





CUTTER CONSORTIUM 
DATAPOWER TECHNOLOGY INC. 
DEFENSE ADVANCED RESEARCH 
PROJECTS AGENCY 
DELOITTE & TOUCHE LLP 
DELTA AIR LINES INC 
DIAMONDCLUSTER INTERNATIONAL INC. 
DOCUMENTUM INC. 
EARTH SATELLITE CORP. 
EDOCS INC. 
ELECTRONIC DATA SYSTEMS CORP. 
EMC CORP. 
ENTERPRISE STORAGE GROUP INC 
EQUIFAX INC 
EXOSTAR LLC. 
F5 NETWORKS INC. 
FEDERAL AVIATION ADMINISTRATION. 
FEDEX CORP. 
FIREPOND INC 
FLORIDA CA USERS GROUP. 
FORRESTER RESEARCH INC 
FOUNDSTONE INC 
GALP ENERGIA, SGPS, SA 
GARTNER INC 
GENERAL ELECTRIC CO. 
GREEN MOUNTAIN COFFEE 
ROASTERS INC 
GUIDANT CORP. 
HARRAH'S ENTERTAINMENT IN 
HARVARD MEDICAL SCHO! 
HAWORTH IN 
4EROIX CORP 

WLETT-PACKARD CC 
HILTON HOTELS CORP 
HR PRIVACY SOLUTIONS LTD. 
TECHNOLOGIES IN 
(8M 


JEPARTMENT 


IN-Q-TEL INC 

INTEL CORP. 

IRISTA INC 

ITM SOFTWARE CORP. 

JOHNSON & JOHNSON 

JUNIPER NETWORKS INC 

LATHAM & WATKINS LLP 

LEGATO SOFTWARE 

LEWIS AND ROCA LLP 

LIFESCAN INC 

LINUX INTERNATIONAL 

LITTLE DIVERSIFIED ARCHITECTURAL 
CONSULTING 

LOCKHEED MARTIN CORP. 
LYONDELL-CITGO REFINING LP. 
MAGNIFIRE WEBSYSTEMS INC 
MANUGISTICS GROUP INC 
MARATHON OIL CO. 

MARQUETTE UNIVERSITY 
MARRIOTT INTERNATIONAL INC 
MEDIA PUBLISHER INC 

MERCURY INTERACTIVE CORP. 
MERRILL LYNCH & CO 

META GROUP INC 

MICHIGAN DEPARTMENT OF STATE 
MICHIGAN DEPARTMENT OF 
TRANSPORTATION 
MICHIGAN STATE POLICE 
MICROSOFT CORP 

MIT 


MOBIUS MANAGEMENT SYSTEMS INC 


MOHEGAN SUN CASINO 
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MRO SOFTWARE INC 

NASA 

NATIONA 

SECURITIES DEALE 

NATIONAL TRANSPORTATION 
SAFETY BOARD 

NETWORK ASSOCIATES IN 
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OF FINANCE 

NEWAYS INTERNATIONAL INC 
NEWBURY NETWORKS INC 
NiKU CORP 

NORTEL NETWORKS CORP 
NORTH AMERICA INGRES USER 


7,10, 12, 13, 37 
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OPTUM INC 39 
ORACLE CORP 1.7, 8,19, 33, 39 
PALMONE INC. 22 
PALMSOURCE INC 22 
PARAMETRIC TECHNOLOGY CORP 
PEOPLESOFT INC 
PERKINS SCHOOL FOR THE BLIND 
PICC PROPERTY AND 
CASUALTY COMPANY LTD. 
PRG-SCHULTZ INTERNATIONAL INC 
PROCOM TECHNOLOGY INC. 
PROVIA SOFTWARE INC 
PROVINCE OF ONTARIO GOVERNMENT 
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RAYTHEON CO. 
RECURSION SOFTWARE INC 
RED HAT INC. 
RIS RESOURCE INFORMATION 
SYSTEMS INC. 
ROBERTSON RESEARCH INSTITUTE 
ROLLS-ROYCE PLC 
ROYAL BANK OF CANADA 
ROYAL CANADIAN MOUNTED POLICE 
SABRE HOLDINGS CORP. 
SAGESTONE CONSULTING INC 
SAMSUNG GROUP 
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SIEMENS BUSINESS SERVICES INC 
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IMMUNICATIONS AB 
SPOTFIRE INC 
STRATAGEM MARKETING INC 
RONGAUTH INC 
SUN MICROSYSTEMS INC 
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SYMBOL TECHNOLOGIES INC 
TALISMAN ENERGY INC 
TECH-ECONOMY ORG 
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ASSOCIATION 
TESSCO TECHNOLOGIES INC 
THE BENCHMARKING EXCHANGE 
THE BOEING CO 
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THE SCO GROUP INC. 
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TRIMAC CORP. 
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U.S. DEPARTMENT OF DEFENSE 
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HOMELAND SECURITY 
U.S. DEPARTMENT OF JUSTICE 
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COMMISSION 
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UNIVERSITY OF ARIZONA 
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JNIVERSITY OF CALIFORNIA, SAN Dit ‘www.oracle.com 
UNIVERSITY OF MICHIGAN ae |. 
VERISIGN INC 2 www.sap.com 
SBC Communications 
www.sbc.com 
Sun Microsystems 
www.sun.com 
Tripp Lite 2 
www tripplite.com 


WACHOVIA CORP. 
WAL-MART STORES INC 
WASHINGTON ALLIANCE OF 
ECHNOLOGY WORKERS. 
WILDLIFE CENTER OF VIRGINIA 
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Continued from page 1 


RFID 


nology to track aircraft parts. 
Boeing and Airbus buy parts 
and subsystems from many of 
the same companies, Porad 
said, estimating that they have 
“70% common suppliers.” 

Porad said an agreement on 
RFID standards between Boe- 
ing and Airbus should help re- 
duce deployment costs for 
suppliers and lead to the de- 
velopment of smart RFID tags 
that airlines could use to bet- 
ter manage and even reduce 
their parts inventories. The 
value of those inventories can 
amount to $1 billion per air- 
line, he added. 

That’s about what Delta’s 
parts inventory is worth, said 
Marty Kansinger, general 
manager of material services 
at the Atlanta-based airline. 
Delta tracks about a half- 
million parts, and Kansinger 
noted that improving the ac- 
curacy of inventory data “is 
very important to us” be- 
cause of the potential for re- 
ducing costs. 


Garbage In, Garbage Out 
Parts tracking depends on the 
quality of data entry, which 
now often begins with an air- 
plane mechanic making notes 
about parts replacements on a 
clipboard. Delta plans to con- 
duct the RFID test to see if 
the tags can help speed up 
data entry and reduce errors 
while minimizing the amount 
of information that end users 
have to input manually, Kan- 
singer said. 

During the test, which will 
run through the end of the 
year, Delta will use RFID de- 
vices and so-called smart bins 
equipped with RFID readers 
at one of its repair depots to 
track the movement of engine 
parts through the facility. 

Delta and Boeing also hope 
to determine how well RFID 
tags and labels — which are 
substrates that contain em- 
bedded tags — can stand up 


to engine temperatures that 

reach as much as 500 degrees. 

Kansinger said the tag suppli- 

er, which he didn’t identify, 
| claims that the devices can 
| withstand such temperatures. 
| To make sure, Delta plans to 
| put RFID labels on parts in- 
side six to eight engines on 
Boeing 757s. 

Delta has already done two 
tests of RFID tags attached to 
passengers’ luggage [Quick- 
Link 45915], and a spokesman 
for the airline said it plans to 
| decide by year’s end whether 
| to deploy the technology 
| throughout its operations to 
| 
| 


track bags. 

Porad said the tags planned 
for the commercial aviation 
industry will be able to store 
more data than the ones being 

| tested in the retail industry 


SRE MR MEE MOT Bien aot) 
used in engines such as this 
Pratt & Whitney Series 2000. 


by companies such as Wal- 
Mart Stores Inc. and its sup- 
pliers. For example, he noted 
that Boeing is using tags that 
can handle up to 10,000 bits 
of data, far more than the 256 
bits supported by retail-indus 
try tags. 

The additional space is re- 
quired because Boeing and 
its airline customers need to 
store more information, in- 


Citigroup to Support Video 


| Will use for training 
| and market updates 


BY LUCAS MEARIAN 
As part of a multiyear project, 
Citigroup Inc. has begun 
rolling out technology from 

| IBM and other vendors that 
will let the financial services 
firm stream live or archived 
videos and multimedia con- 
tent to about 300,000 PCs. 

| Citigroup will use the con- 
tent-delivery system to train 

| employees and send financial 
market updates and internal 
corporate announcements to 
its workers worldwide, said 
Tony Raimundo, senior vice 
president of digital media and 
collaborative technologies at 
the New York-based company. 

Raimundo said Citigroup 

started designing the system 
two years ago and expects to 
install software agents that 
support it on about 150,000 
PCs in 52 offices this year. An- 
other 150,000 PCs are sched- 
uled to be equipped with the 


Streaming on 300k PCs 


agents next year, he added. 

The technology Citigroup 
plans to use is part of an inte- 
grated set of products called 
Digital Media for Banking. 
IBM announced the bundle 
last month at a technology 
conference held in Boston by 
TowerGroup, a research firm 
that focuses on financial ser- 
vices IT. 

Digital Media for Banking 
includes IBM’s Intel-based 
xSeries servers, plus its DB2 
database and content man- 
agement software and Web- 
Sphere middleware. The bun- 
dle also incorporates Cisco 
Systems Inc.’s routers and its 
Application and Content Net- 
working System software, 
which provides local caching 
and content-delivery capabili- 
ties. Streaming media soft- 
ware developed by Media 
Publisher Inc. in Berkeley, 
Calif., is included as well. 

“Ultimately, we'd like to 


stream [content] to potentially 


every desktop and television 
in Citigroup,” Raimundo said. 


cluding long serial numbers, 
detailed parts information and 
repair histories, Porad said. 

In a test conducted during 
the last three months of 2003, 
Boeing and FedEx Corp. used 
RFID labels to track parts on 
an MD-10 freighter airplane. 
FedEx is scheduled to detail 
the results of the test at this 
week’s aviation industry RFID 
forum. 

FedEx officials couldn’t be 
reached for comment last 
week. But Porad said the test 
showed that tags operating in 
the 13.56-MHz frequency can 
function inside the metal envi- 
ronment of an aircraft and 
meet Federal Aviation Admin- 
istration mandates on electro- 
magnetic interference. He said 
he expects the FAA to soon 
approve the use of 13.56-MHz 


He added that having video- 
on-demand capabilities should 
help improve productivity by 
allowing employees to watch 
training or corporate informa- 
tion videos when it’s conve- 
nient for them. 


New Options 

“We've done live streaming 
over satellite, but it was prob- 
lematic because if you were a 
worker, you needed to be at 
your desk at [a specific time] 
to see it,” Raimundo said. 

In the past, Citigroup also 
had to set up live video feeds 
in conference rooms when it 
wanted to communicate at a 
corporatewide level. Raimun- 
do said he’s now looking for- 
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We've done 

live streaming 
over satellite, but 
it was problematic 
because . . . you 
needed to be at your 
desk at [a specific 
time] to see it. 
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tags on commercial aircraft. 

From a global perspective, 
13.56-MHz tags are ideal, Po- 
rad said, because that frequen- 
cy is approved for use world- 
wide — although its practical 
ity is somewhat limited be- 
cause the maximum range be- 
tween RFID tags and readers 
is just 1 meter. 

In future tests, including 
the one with Delta, Boeing 
plans to use tags that operate 
at 915 MHz and have a read 
range of roughly 60 feet. But 
those tags were developed for 
the retail industry and cur- 
rently are limited to the 256- 
bit storage capacity. In addi 
tion, they can’t be deployed in 
Europe because of prohibi- 
tions against the use of that 
frequency for RFID applica- 


tions. @ 47350 


ward to being able to stream 
content directly to end-user 
PCs. He declined to disclose 
the cost of the project. 

In addition to the interac 
tive video technology that 
Citigroup is installing, the 
Digital Media for Banking 
bundle supports digital con- 
tent management, video sur- 
veillance of facilities and on- 
line merchandising via plas 
ma-screen televisions in 
branch offices 

Metadata about the multi- 
media content is stored along- 
side the videos in DB2-based 
repositories to help streamline 
the process of searching for 
archived information, said 
Keith Myer, a digital media 
marketing manager at IBM. 

Guillermo Kopp, an analyst 
at Needham, Mass.-based 
TowerGroup, said there’s 
nothing new about associating 
metadata with streaming 
video, audio or graphics files 
for data mining and distribu- 
tion purposes. But he added 
that IBM has structured its 
technology in a way that links 
the videos with other data 
such as customer records 
and marketing information. 


@ 47202 
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Big IT Doomed 


IG IT PROJECTS ARE DOOMED. Want proof? Just look at 
the four-year, $100 million-plus project to rebuild the air- 
travel reservation system run by Sabre Holdings Corp. 
{QuickLink 46873]. Sabre’s decades-old system was 10 
million lines of mainframe assembly language code. The 
new version is C++ and Java running on 17 HP NonStop database ma- 
chines and 45 Linux servers — which means everything is getting 
overhauled. And halfway through the project, it’s all working. 
So how does this big — and successful — IT project prove that big 
IT projects are doomed? It became successful only because Sabre 
stopped running it as a big IT project. 


See, Sabre has tried to overhaul its reserva- 
tion system before — most infamously from 
1988 to 1992, when it spent $125 million ona 
megaproject to do just that. This was Sabre’s gi- 
ant leap into the future. Project architects pol- 
ished the design down to the last interface and 
buffer. Project managers broke it into manage- 
able pieces to be built in parallel, just the way 
the experts said it should be done. 

After three and a half years of development, 
the pieces were put together into a finished sys- 
tem. It didn’t work well. Three months before 
the project was set to go live, with partners like 
Budget Rent A Car and the Hilton and Marriott 
hotel chains waiting to use it, managers began 
to realize the problems might not be fixable. 

A few weeks ahead of the promised comple- 
tion date, Sabre had to junk the entire system. 

Now that was a big, doomed IT project. And 
for 10 years, it spooked Sabre away from any- 
thing that big. 

So what makes this new four-year, $100 mil- 


year, $100 million-plus catastrophe? 
This time, it wasn’t a big leap. 
Borrowing techniques from so- 
called agile programming, Sabre 
did it as a series of small steps. 
Because of that, the project’s ar- 
chitecture has already changed 
twice so far. Originally, all the 
mainframe functions were going to 
be ported to the fault-tolerant Non- 
Stop servers. As the project pro- 
gressed, some of those functions 
were shifted to Unix servers. Then 
they were moved to Linux. And the 
data-replication system was also 
rearchitected midstream. 
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As a result, the system already looks a lot dif- 
ferent now than the design did in 2001, when 
the project started. Small steps — and a willing- 
ness to change direction — make that possible. 

Small steps also make it possible to respond 
to changes in technology. That’s why Linux, 
which didn’t look like a viable option in 2001, 
could be brought in later in the game. 

And small steps make it possible to go live 
with each iteration of the system before moving 
forward — to make sure the technology works 
and to make sure the system is what users need. 
If it’s not, it can be changed. 

That doesn’t sound like a big IT project, does 
it? Everything we expect from a big IT project 
is missing: the grand, detailed plan; the divide- 
at-the-start-and-integrate-at-the-end strategy; 
the years-before-it-goes-live schedule. 

That approach has doomed big IT projects 
for generations. It had too much risk built into 
it, requiring too many predictions in the face of 
too much change — and depending on too 
much perfection in execution. 

Now that approach itself is doomed. There’s 
no longer any justification for 
putting a major project at risk with 
a traditional big IT project ap- 
proach. We know it doesn’t work. 

And we know what does work. 
We've seen it at Sabre. 

So don’t fear big, doomed 
projects. Break them down. Take 
them live as a series of small steps. 
Change your designs in response 
to new technology — and as you 
go, make sure they work. 

That way, no matter how large 
they get, your IT projects never 
have to be doomed again. @ 47311 
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Darn Newfangled Pay Stubs! 


Support pilot fish is trying to explain to employees 
who are not office workers - and have no computer 
experience at all - how to view their new online pay 
stubs. “The built-in browser for a large Internet 
provider does not work well with the ‘paycheck’ Web 
site,” fish reports. “The solution is to leave the ISP 
logged on and start Internet Explorer. | ask one user to 
do this, and he reports that Explorer is not installed. | 
ask, ‘This is a Windows machine, right?’ His reply: ‘! 
just got it and don’t know what is installed.’ ” 


sor fan was 
toast - that’s 
why the warn- 
ing was issued. 
And during the 
: attempt to fix the PC, 
double-billed for every _: the user's hard disk was 
shipment. “The account- : erased. But at least that 
ing group and!spent —_: darn system warning 
days poring through ; was gone.” 
invoice file backups i 

: It’s Official 


and could not find a sin- 
Pilot fish applies for a 


gle duplication,” says 
pilot fish working there. : mortgage, and along 
: with the usual piles of 


“Then | recalled apro- 


TANK. 


complaint from 
an independent 
retailer that he’s being 


gramming change made 
at the request of some 
dealers: We had added 


_ way could they be tam- 
the fact that the proces- : pered with, right?” 


SEND SHARKY YOUR tamper-proof true tale of IT 

life to sharky@computerworld.com. You score a 
sharp Shark shirt if | use it. And check out the daily feed, 
browse the Sharkives and sign up for Shark Tank home 
delivery at computerworld.com/sharky. 
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